| Título | Astun Technology iShare Maps 5.4.0 Cross Site Scripting |
|---|
| Descrição | A reflected Cross-Site Scripting (XSS) vulnerability was identified in the iShare Maps platform by Astun Technology, affecting the Dudley Metropolitan Borough Council website. The vulnerability exists in the atTxtStreet parameter of the mycouncil2.aspx page, allowing an attacker to inject and execute arbitrary JavaScript code in users’ browsers. This flaw can lead to session hijacking, phishing, or other malicious client-side attacks without requiring authentication. |
|---|
| Fonte | ⚠️ https://example.com/mycouncil2.aspx?atTxtStreet=wwww'-alert(1)-' |
|---|
| Utilizador | Alexandre Rodrigo (UID 76412) |
|---|
| Submissão | 22/05/2025 05h19 (há 11 meses) |
|---|
| Moderação | 30/05/2025 13h31 (8 days later) |
|---|
| Estado | Aceite |
|---|
| Entrada VulDB | 310671 [Astun Technology iShare Maps 5.4.0 mycouncil2.aspx atTxtStreet Script de Site Cruzado] |
|---|
| Pontos | 17 |
|---|