2 matches found
CVE-2017-6533
CVE-2017-6533 concerns an XSS in webpagetest 3.0. The vulnerability arises from insufficient filtration of user-supplied data (benchmark) passed to webpagetest-master/www/benchmarks/view.php, allowing an attacker to inject HTML/script in the context of the vulnerable site. The documentation does ...
CVE-2017-6533
A Cross-Site Scripting XSS issue was discovered in webpagetest 3.0. The vulnerability exists due to insufficient filtration of user-supplied data benchmark passed to the webpagetest-master/www/benchmarks/view.php URL. An attacker could execute arbitrary HTML and script code in a browser in the...