New vulnerability on the NVD: CVE-2016-6343 - Technopweb

Technopweb

Much About Technology And A Bit About Everything

Facebook

Post Top Ad

New vulnerability on the NVD: CVE-2016-6343

Share This
JBoss BPM Suite 6 is vulnerable to a reflected XSS via dashbuilder. Remote attackers can entice authenticated users that have privileges to access dashbuilder (usually admins) to click on links to /dashbuilder/Controller containing malicious scripts. Successful exploitation would allow execution of script code within the context of the affected user.

Published at: October 31, 2018 at 06:59PM
View on website

No comments:

Post a Comment

Search This Blog

Post Bottom Ad