2 matches found
CVE-2023-49258 Reflected cross-site scripting vulnerability
User browser may be forced to execute JavaScript and pass the authentication cookie to the attacker leveraging the XSS vulnerability located at "/gui/terminaltool.cgi" in the "data" parameter...
CVE-2023-49258
CVE-2023-49258 is an XSS vulnerability described across sources as allowing a user’s browser to force JavaScript execution and exfiltrate the authentication cookie via the data parameter of /gui/terminal_tool.cgi. Red Hat records reiterate the issue under RH:CVE-2023-49258 with the same descripti...