| Название | Astun Technology iShare Maps 5.4.0 Cross Site Scripting |
|---|
| Описание | A reflected Cross-Site Scripting (XSS) vulnerability was identified in the iShare Maps platform by Astun Technology, affecting the Dudley Metropolitan Borough Council website. The vulnerability exists in the atTxtStreet parameter of the mycouncil2.aspx page, allowing an attacker to inject and execute arbitrary JavaScript code in users’ browsers. This flaw can lead to session hijacking, phishing, or other malicious client-side attacks without requiring authentication. |
|---|
| Источник | ⚠️ https://example.com/mycouncil2.aspx?atTxtStreet=wwww'-alert(1)-' |
|---|
| Пользователь | Alexandre Rodrigo (UID 76412) |
|---|
| Представление | 22.05.2025 05:19 (11 месяцы назад) |
|---|
| Модерация | 30.05.2025 13:31 (8 days later) |
|---|
| Статус | принято |
|---|
| Запись VulDB | 310671 [Astun Technology iShare Maps 5.4.0 mycouncil2.aspx atTxtStreet межсайтовый скриптинг] |
|---|
| Баллы | 17 |
|---|