all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Cisco BroadWorks Application Software Flaw Let Attackers conduct XSS Attack

Add to bookmarks
Aug. 31, 2023, 12:22 p.m. | Guru Baran

GBHackers On Security gbhackers.com

Cisco released a fix for the medium impact vulnerability found on CommPilot Application Software, allowing cross-site scripting against the user interface. The Cisco BroadWorks CommPilot Application allows authenticated users to upload configuration files on the platform. The lack of file validation and broken access control on the vulnerable upload servlet allows any authenticated user to […]


The post Cisco BroadWorks Application Software Flaw Let Attackers conduct XSS Attack appeared first on GBHackers - Latest Cyber Security News | Hacker News …

access access control application attack attackers broken access control cisco configuration configuration files control cross-site file files fix flaw found impact interface medium platform scripting software upload user interface validation vulnerability vulnerable xss

Visit resource

More from gbhackers.com / GBHackers On Security

Hackers Moving To AI But Lacking Behind The Defenders In Adoption Rates 4 hours ago | gbhackers.com
adoption advanced ai security artificial intelligence +25
PoC Released for Critical PuTTY Private Key Recovery Vulnerability 1 day, 8 hours ago | gbhackers.com
attackers client concept critical +29
HackCar – Attack AND Defense Playground For Automotive System 1 day, 10 hours ago | gbhackers.com
area attack attacks automotive +31
DDoS Attack Size Increased by 233.33%, UDP-Based are Popular 2 days, 3 hours ago | gbhackers.com
attack attacks cyber-attack cyber security +14
New LLMjacking Used Stolen Cloud Credentials to Attack Cloud LLM Servers 2 days, 4 hours ago | gbhackers.com
access attack attackers cloud +25
HijackLoader Malware Attack Windows Via Weaponized PNG Image 2 days, 6 hours ago | gbhackers.com
amadey attack cyber-attack cyber security +23
North Korean Hackers Abusing Facebook & MS Management Console 2 days, 7 hours ago | gbhackers.com
abusing adversaries assets complexity +27
Google Chrome Zero-day Exploited in the Wild, Patch Now 2 days, 8 hours ago | gbhackers.com
actively exploited breaches browser browsers +27
Dell Hacked – Attackers Stolen 49 Million Customers Personal Information 2 days, 9 hours ago | gbhackers.com
addresses attackers breach customer +25

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

GCP Incident Response Engineer

@ Publicis Groupe | Dallas, Texas, United States
View on infosec-jobs.com

DevSecOps Engineer - CL - Santiago

@ Globant | Santiago de Chile, Santiago, CL
View on infosec-jobs.com

IT Security Analyst - State Government & Healthcare

@ NTT DATA | Little Rock, AR, US
View on infosec-jobs.com

Exploit Developer

@ Peraton | Fort Meade, MD, United States
View on infosec-jobs.com

Senior Manager, Response Analytics & Insights (Fraud Threat Management)

@ Scotiabank | Toronto, ON, CA, M3C0N5
View on infosec-jobs.com

Cybersecurity Risk Analyst IV

@ Computer Task Group, Inc | Buffalo, NY, United States
View on infosec-jobs.com
View more jobs