2 matches found
Cross-Site Scripting
github.com/baidu/openrasp is vulnerable to Cross-Site Scripting. The vulnerability is due to improper handling of input and lack of output sanitization in the redirect parameter on the /login page. This allows attacker to inject arbritrary javascript to be executed with the permissions of a user...
Baidu OpenRASP 安全漏洞
Baidu OpenRASP is an open source RASP solution from the Chinese company Baidu. A security vulnerability exists in Baidu OpenRASP. An attacker can exploit this vulnerability to execute arbitrary JavaScript...