Enviar #310642: iboss Seure Web Gateway < 10.2.0 Stored cross-site scripting (XSS)información

Títuloiboss Seure Web Gateway < 10.2.0 Stored cross-site scripting (XSS)
DescripciónStored cross-site scripting (XSS) in the login interface of iboss's Secure Web Gateway on versions before 10.2.0 allows remote attackers to inject arbitrary JavaScript via the redirectUrl parameter. See link to detailed explanation and proof of concept.
Fuente⚠️ https://github.com/modrnProph3t/PoC/blob/main/iboss-stored-XSS.md
Usuario
 Anonymous User
Sumisión2024-04-04 15:26 (hace 2 años)
Moderación2024-04-05 17:00 (1 day later)
EstadoAceptado
Entrada de VulDB259501 [iboss Secure Web Gateway hasta 10.1 Login Portal /login redirectUrl secuencias de comandos en sitios cruzados]
Puntos17

Do you need the next level of professionalism?

Upgrade your account now!