JBoss BPM Suite 6 is vulnerable to a reflected XSS via dashbuilder. Remote attackers can entice authenticated users that have privileges to access dashbuilder (usually admins) to click on links to /dashbuilder/Controller containing malicious scripts. Successful exploitation would allow execution of script code within the context of the affected user.
Published at: October 31, 2018 at 06:59PM
View on website
Post Top Ad

New vulnerability on the NVD: CVE-2016-6343
Share This
Tags
# cyber security
# government
# hack
# NVD
# security
Share This
About Shubham Pandey
security
Labels:
cyber security,
government,
hack,
NVD,
security
Subscribe to:
Post Comments (Atom)
Search This Blog
Post Bottom Ad
Author Details
Much about Technology and a bit about Everything. We provide high quality of Information and tips tricks than bookmark us.updates daily.Have a Visit.
No comments:
Post a Comment