9 matches found
CVE-2024-29183
OpenRASP is a RASP solution that directly integrates its protection engine into the application server by instrumentation. There exists a reflected XSS in the /login page due to a reflection of the redirect parameter. This allows an attacker to execute arbitrary javascript with the permissions of...
Cross-Site Scripting
github.com/baidu/openrasp is vulnerable to Cross-Site Scripting. The vulnerability is due to improper handling of input and lack of output sanitization in the redirect parameter on the /login page. This allows attacker to inject arbritrary javascript to be executed with the permissions of a user...
CVE-2024-29183
OpenRASP is a RASP solution that directly integrates its protection engine into the application server by instrumentation. There exists a reflected XSS in the /login page due to a reflection of the redirect parameter. This allows an attacker to execute arbitrary javascript with the permissions of...
CVE-2024-29183 OpenRASP vulnerable to a reflected Cross-Site Scripting (XSS) attack in /login
OpenRASP is a RASP solution that directly integrates its protection engine into the application server by instrumentation. There exists a reflected XSS in the /login page due to a reflection of the redirect parameter. This allows an attacker to execute arbitrary javascript with the permissions of...
CVE-2024-29183 OpenRASP vulnerable to a reflected Cross-Site Scripting (XSS) attack in /login
OpenRASP is a RASP solution that directly integrates its protection engine into the application server by instrumentation. There exists a reflected XSS in the /login page due to a reflection of the redirect parameter. This allows an attacker to execute arbitrary javascript with the permissions of...
CVE-2024-29183
OpenRASP (the RASP solution) is affected by a reflected XSS in the /login page caused by reflection of the redirect parameter. The issue allows an attacker to execute arbitrary JavaScript in the context of a logged-in user. The CVE entry provides CVSS v3.1 base score 6.1 (Medium) with network att...
CVE-2024-29183 OpenRASP vulnerable to a reflected Cross-Site Scripting (XSS) attack in /login
OpenRASP is a RASP solution that directly integrates its protection engine into the application server by instrumentation. There exists a reflected XSS in the /login page due to a reflection of the redirect parameter. This allows an attacker to execute arbitrary javascript with the permissions of...
Baidu OpenRASP 安全漏洞
Baidu OpenRASP is an open source RASP solution from the Chinese company Baidu. A security vulnerability exists in Baidu OpenRASP. An attacker can exploit this vulnerability to execute arbitrary JavaScript...
PT-2024-22788 · Openasp · Openasp
Name of the Vulnerable Software and Affected Versions: OpenRASP affected versions not specified Description: The issue is related to a reflected Cross-Site Scripting XSS in the /login page, caused by the reflection of the redirect parameter. This allows an attacker to execute arbitrary javascript...