| 标题 | Astun Technology iShare Maps 5.4.0 Cross Site Scripting |
|---|
| 描述 | A reflected Cross-Site Scripting (XSS) vulnerability was identified in the iShare Maps platform by Astun Technology, affecting the Dudley Metropolitan Borough Council website. The vulnerability exists in the atTxtStreet parameter of the mycouncil2.aspx page, allowing an attacker to inject and execute arbitrary JavaScript code in users’ browsers. This flaw can lead to session hijacking, phishing, or other malicious client-side attacks without requiring authentication. |
|---|
| 来源 | ⚠️ https://example.com/mycouncil2.aspx?atTxtStreet=wwww'-alert(1)-' |
|---|
| 用户 | Alexandre Rodrigo (UID 76412) |
|---|
| 提交 | 2025-05-22 05時19分 (11 月前) |
|---|
| 管理 | 2025-05-30 13時31分 (8 days later) |
|---|
| 状态 | 已接受 |
|---|
| VulDB条目 | 310671 [Astun Technology iShare Maps 5.4.0 mycouncil2.aspx atTxtStreet 跨网站脚本] |
|---|
| 积分 | 17 |
|---|