Sonicwall Signatures
Go to
All Categories
list.
rConfig devicemgmnt.php XSS
Category:
WEB-ATTACKS
rConfig 3.9.4 is vulnerable to reflected XSS. The devicemgmnt.php file improperly validates user input. An attacker can exploit this by crafting arbitrary JavaScript in the deviceId GET parameter to devicemgmnt.php.
References
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2020-12256
© SonicWall 2020 |
Privacy Policy
|
Conditions for use
Version: 10.0
