| Title | Astun Technology iShare Maps 5.4.0 Cross Site Scripting |
|---|
| Description | A reflected Cross-Site Scripting (XSS) vulnerability was identified in the iShare Maps platform by Astun Technology, affecting the Dudley Metropolitan Borough Council website. The vulnerability exists in the atTxtStreet parameter of the mycouncil2.aspx page, allowing an attacker to inject and execute arbitrary JavaScript code in users’ browsers. This flaw can lead to session hijacking, phishing, or other malicious client-side attacks without requiring authentication. |
|---|
| Source | ⚠️ https://example.com/mycouncil2.aspx?atTxtStreet=wwww'-alert(1)-' |
|---|
| User | Alexandre Rodrigo (UID 76412) |
|---|
| Submission | 05/22/2025 05:19 (11 months ago) |
|---|
| Moderation | 05/30/2025 13:31 (8 days later) |
|---|
| Status | Accepted |
|---|
| VulDB entry | 310671 [Astun Technology iShare Maps 5.4.0 mycouncil2.aspx atTxtStreet cross site scripting] |
|---|
| Points | 17 |
|---|