Description:
The www.████████ site is using ████
, which is vulnerable to reflected XSS in the /█████
component via the █████████
parameter.
https://www.cvedetails.com/cve/CVE-2017-14651/
https://docs.wso2.com/display/Security/Security+Advisory+WSO2-2017-0265
An attacker can cause malicious code to execute in the victims browser, leading to credential theft, drive-by downloads, malicious redirects, and more.
www.██████████
████████
CVE-2017-14651
Apply ███ (see references section)