3 matches found
CVE-2021-42856
It was discovered that the /DsaDataTest endpoint is susceptible to Cross-site scripting XSS attack. It was noted that the Metric parameter does not have any input checks on the user input that allows an attacker to craft its own malicious payload to trigger a XSS vulnerability...
CVE-2021-42856
The CVE refers to CVE-2021-42856 affecting Aternity SteelCentral AppInternals. The vulnerability is a Cross-site Scripting (XSS) flaw in the /DsaDataTest endpoint, where the Metric parameter accepts user input without proper validation, enabling an attacker to craft a payload to trigger XSS. The ...
CVE-2021-42856 Reflected Cross-site Scripting at DsaDataTest
It was discovered that the /DsaDataTest endpoint is susceptible to Cross-site scripting XSS attack. It was noted that the Metric parameter does not have any input checks on the user input that allows an attacker to craft its own malicious payload to trigger a XSS vulnerability...