| عنوان | iboss Seure Web Gateway < 10.2.0 Stored cross-site scripting (XSS) |
|---|
| الوصف | Stored cross-site scripting (XSS) in the login interface of iboss's Secure Web Gateway on versions before 10.2.0 allows remote attackers to inject arbitrary JavaScript via the redirectUrl parameter.
See link to detailed explanation and proof of concept. |
|---|
| المصدر | ⚠️ https://github.com/modrnProph3t/PoC/blob/main/iboss-stored-XSS.md |
|---|
| المستخدم | Anonymous User |
|---|
| ارسال | 04/04/2024 03:26 PM (2 سنوات منذ) |
|---|
| الاعتدال | 05/04/2024 05:00 PM (1 day later) |
|---|
| الحالة | تمت الموافقة |
|---|
| إدخال VulDB | 259501 [iboss Secure Web Gateway حتى 10.1 Login Portal /login redirectUrl البرمجة عبر المواقع] |
|---|
| النقاط | 17 |
|---|