CVE-2020-36978
Froxlor Froxlor Server Management Panel 0.10.16 - Persistent Cross-Site Scripting
Froxlor Server Management Panel 0.10.16 contains a persistent cross-site scripting vulnerability in customer registration input fields. Attackers can inject malicious scripts through username, name, and firstname parameters to execute code when administrators view customer traffic modules.
CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:P/VC:L/VI:L/VA:N/SC:L/SI:L/SA:N
Productos afectados
Froxlor · Froxlor Froxlor Server Management Panel¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →Referencias
https://froxlor.org/https://froxlor.org/download/https://www.exploit-db.com/exploits/49063https://www.vulncheck.com/advisories/froxlor-froxlor-server-management-panel-persistent-cross-site-scriptinghttps://www.vulnerability-lab.com/get_content.php?id=2241https://www.vulnerability-lab.com/show.php?user=Benjamin%20K.M.https://www.vulnerability-lab.com/show.php?user=Vulnerability-Lab