| Название | esafenet CDG V5 Cross-Site Scripting (XSS) |
|---|
| Описание | A vulnerability classified as critical has been discovered in esafenet's CDG v5 product.
The following code (CDG_SysConfig.jsp)contains a Cross-Site Scripting (XSS) vulnerability in the help parameter. An attacker can exploit this vulnerability to execute malicious scripts in the user's browser, potentially leading to information theft or other malicious activities. |
|---|
| Источник | ⚠️ https://github.com/Rain1er/report/blob/main/CDG/SysConfig.md |
|---|
| Пользователь | raindrop (UID 80297) |
|---|
| Представление | 16.01.2025 10:20 (1 Год назад) |
|---|
| Модерация | 28.01.2025 15:34 (12 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 293909 [ESAFENET CDG V5 /SysConfig.jsp help межсайтовый скриптинг] |
|---|
| Баллы | 19 |
|---|