Lucene search
MitreCVELIST:CVE-2023-26789HistoryApr 05, 2023 - 12:00 a.m.
CVE-2023-26789
2023-04-0500:00:00
mitre
www.cve.org
4
veritas netbackup
opscenter
xss
vulnerability
web app
javascript
html
browser
EPSS
0.001
Percentile
27.3%
Veritas NetBackUp OpsCenter Version 9.1.0.1 is vulnerable to Reflected Cross-site scripting (XSS). The Web App fails to adequately sanitize special characters. By leveraging this issue, an attacker is able to cause arbitrary HTML and JavaScript code to be executed in a userβs browser.
References
github.com/IthacaLabs/Veritas-Technologies
github.com/IthacaLabs/Veritas-Technologies/blob/main/Veritas%20NetBackUp%20OpsCenter%20Version%209.1.0.1/Reflected%20XSS/XSS.txt
github.com/IthacaLabs/Veritas-Technologies/blob/main/Veritas%20NetBackUp%20OpsCenter%20Version%209.1.0.1/Reflected%20XSS/XSS_CVE-2023-26789.txt
Related
prion
prion
Cross site scripting
2023-04-05 13:15:00
cve
cve
CVE-2023-26789
2023-04-05 13:15:06
nvd
nvd
CVE-2023-26789
2023-04-05 13:15:06