CVE-2020-15864
Quali CloudShell 9.3 contains a cross-site scripting (XSS) flaw in the login page. An attacker can craft a URL including a username field containing constructor.constructor, which executes a payload when the user visits /Account/Login. Public references come from CVE-2020-15864 (NVD entry) and re...