Loading
Accellion FTP server prior to version FTA_9_12_220 uses the Accusoft Prizm Content flash component, which contains multiple parameters (customTabCategoryName, customButton1Image) that are vulnerable to cross-site scripting.
Use CWE-80, Accellion vendor hub and Ftp Server product page to widen CVE-2016-9500 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2016-9499 for nearby disclosures in the same product family.