EUVD-2019-10124

Malware in sbrugna...

CVE-2019-1567

The Expedition Migration tool 1.1.6 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings...

CVE-2019-1567

The Expedition Migration tool 1.1.6 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings...

Design/Logic Flaw

The Expedition Migration tool 1.1.6 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings...

CVE-2019-1567

The Expedition Migration tool 1.1.6 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings...

CVE-2019-1567

The CVE-2019-1567 issue affects Palo Alto Expedition Migration Tool (1.1.x and earlier). Affected component: User Mapping Settings. Root cause: improper validation/exposure allowing an authenticated attacker to inject arbitrary JavaScript or HTML (stored XSS). Impact: attacker can execute script ...

CVE-2019-1569

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings for account name of admin user...

CVE-2019-1569

The Expedition Migration tool 1.1.8 and earlier may allow an authenticated attacker to run arbitrary JavaScript or HTML in the User Mapping Settings for account name of admin user...

Stored Cross-Site Scripting in Expedition Migration Tool

A stored cross-site scripting XSS vulnerability exists in the Palo Alto Networks Migration Tool “Expedition”. Ref MT-908/ CVE-2019-1567 Successful exploitation of this issue may allow an authenticated attacker to inject arbitrary JavaScript or HTML in the User Mapping Settings. This issue affects...