Authentication flaw

2018-07-0518:29:00

PRIOn knowledge base

www.prio-n.com

0.001 Low

EPSS

Percentile

38.2%

In J2 Innovations FIN Stack 4.0, the authentication webform is vulnerable to reflected XSS via the query string to /login.

CPENameOperatorVersion
fin_stackeq4.0

CPE	Name	Operator	Version
	fin_stack	eq	4.0

References

github.com/miruser/Roche-CVEs/blob/master/CVE-2017-11175.md

0.001 Low

EPSS

Percentile

38.2%

Related for PRION:CVE-2017-11175