إرسال #310642: iboss Seure Web Gateway < 10.2.0 Stored cross-site scripting (XSS)المعلومات

عنوانiboss Seure Web Gateway < 10.2.0 Stored cross-site scripting (XSS)
الوصفStored cross-site scripting (XSS) in the login interface of iboss's Secure Web Gateway on versions before 10.2.0 allows remote attackers to inject arbitrary JavaScript via the redirectUrl parameter. See link to detailed explanation and proof of concept.
المصدر⚠️ https://github.com/modrnProph3t/PoC/blob/main/iboss-stored-XSS.md
المستخدم
 Anonymous User
ارسال04/04/2024 03:26 PM (2 سنوات منذ)
الاعتدال05/04/2024 05:00 PM (1 day later)
الحالةتمت الموافقة
إدخال VulDB259501 [iboss Secure Web Gateway حتى 10.1 Login Portal /login redirectUrl البرمجة عبر المواقع]
النقاط17

Interested in the pricing of exploits?

See the underground prices here!