SonicALERT
Search

Sonicwall Signatures

 

Go to All Categories list.


  WiKID 2FA Enterprise Server XSS 2

Category: WEB-ATTACKS      

Multiple cross-site scripting (XSS) vulnerabilities in WiKID 2FA Enterprise Server through 4.2.0-b2047 allow remote attackers to inject arbitrary web script or HTML that is triggered when Logs.jsp is visited. The rendered_message column is retrieved and displayed, unsanitized, on Logs.jsp. A remote attack can populate the rendered_message column with malicious values.


Relevant Information