rConfig cross-site scripting vulnerability (CNVD-2020-33652)
rConfig is an open source network configuration management utility . A cross-site scripting vulnerability exists in the devicemgmnt.php file in version 3.9.4 of rConfig. The vulnerability stems from the lack of proper validation of client-side data in the WEB application, and can be exploited by ...