3 matches found
CVE-2017-6535
Multiple Cross-Site Scripting XSS issues were discovered in webpagetest 3.0. The vulnerabilities exist due to insufficient filtration of user-supplied data benchmark, url passed to the webpagetest-master/www/benchmarks/trendurl.php URL. An attacker could execute arbitrary HTML and script code in ...
CVE-2017-6535
Multiple Cross-Site Scripting XSS issues were discovered in webpagetest 3.0. The vulnerabilities exist due to insufficient filtration of user-supplied data benchmark, url passed to the webpagetest-master/www/benchmarks/trendurl.php URL. An attacker could execute arbitrary HTML and script code in ...
CVE-2017-6535
CVE-2017-6535 affects webpagetest 3.0. The vulnerability stems from insufficient filtration of user-supplied data (benchmark, url) passed to webpagetest-master/www/benchmarks/trendurl.php, enabling Cross-Site Scripting (XSS) where an attacker could execute arbitrary HTML/script in a victim's brow...