| Title | esafenet CDG V5 Cross-Site Scripting (XSS) |
|---|
| Description | A vulnerability classified as critical has been discovered in esafenet's CDG v5 product.
The following code (todolistjump.jsp)contains a Cross-Site Scripting (XSS) vulnerability in the flowId parameter. An attacker can exploit this vulnerability to execute malicious scripts in the user's browser, potentially leading to information theft or other malicious activities.
|
|---|
| Source | ⚠️ https://github.com/Rain1er/report/blob/main/CDG/todolistjump.md |
|---|
| User | rian.xinc (UID 80321) |
|---|
| Submission | 01/16/2025 10:34 (1 Year ago) |
|---|
| Moderation | 01/28/2025 15:34 (12 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 293919 [ESAFENET CDG V5 /todolistjump.jsp flowId cross site scripting] |
|---|
| Points | 19 |
|---|