| 标题 | esafenet CDG V5 Cross-Site Scripting (XSS) |
|---|
| 描述 | A vulnerability classified as critical has been discovered in esafenet's CDG v5 product.
The following code (CDG_SysConfig.jsp)contains a Cross-Site Scripting (XSS) vulnerability in the help parameter. An attacker can exploit this vulnerability to execute malicious scripts in the user's browser, potentially leading to information theft or other malicious activities. |
|---|
| 来源 | ⚠️ https://github.com/Rain1er/report/blob/main/CDG/SysConfig.md |
|---|
| 用户 | raindrop (UID 80297) |
|---|
| 提交 | 2025-01-16 10時20分 (1 年前) |
|---|
| 管理 | 2025-01-28 15時34分 (12 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 293909 [ESAFENET CDG V5 /SysConfig.jsp help 跨网站脚本] |
|---|
| 积分 | 19 |
|---|