Secure Web Gateway 10.2.11 Cross Site Scripting
Secure Web Gateway version 10.2.11 suffers from a cross site scripting vulnerability. RedTeam Pentesting identified a vulnerability which allows attackers to craft URLs to any third-party website that result in
arbitrary content to be injected into the response when accessed through
the Secure Web Gateway. While it is possible to inject arbitrary content
types, the primary risk arises from JavaScript code allowing for cross
site scripting.
https://packetstormsecurity.com/files/170756/rt-sa-2022-002.txt
Thu, 26 Jan 2023 15:36:15 GMT
________________________________
--- The information is for inforamtional purposes only.
* Origin: Read us with
http://winpoint.org JID:
rs@captflint.com