Cross site scripting

Rapid7 Metasploit Pro versions 4.21.2 and lower suffer from a stored cross site scripting vulnerability, due to a lack of JavaScript request string sanitization. Using this vulnerability, an authenticated attacker can execute arbitrary HTML and script code in the target browser against another...

Rapid7 Metasploit Pro 跨站脚本漏洞

Rapid7 Metasploit Pro is a suite of penetration testing software from the US-based Rapid7. A security vulnerability exists in Rapid7 Metasploit Pro 4.21.2 and prior versions, which stems from insufficient JavaScript request string cleanup, and can be exploited by an attacker to execute HTML and...

Beckhoff Target Browser Detection (Windows SMB Login)

Detects the installed version of Beckhoff Target Browser for Windows. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Kibana Tag Cloud Visualization Cross-Site Scripting Vulnerability

Kibana is an open source analytics and visualization platform designed to work with Elasticsearch.Kibana provides the ability to search, view, and interact with data stored in Elasticsearch indexes. Developers or operations staff can easily perform advanced data analysis and visualize data in a...