all InfoSec news
Cisco BroadWorks Application Software Flaw Let Attackers conduct XSS Attack
GBHackers On Security gbhackers.com
Cisco released a fix for the medium impact vulnerability found on CommPilot Application Software, allowing cross-site scripting against the user interface. The Cisco BroadWorks CommPilot Application allows authenticated users to upload configuration files on the platform. The lack of file validation and broken access control on the vulnerable upload servlet allows any authenticated user to […]
The post Cisco BroadWorks Application Software Flaw Let Attackers conduct XSS Attack appeared first on GBHackers - Latest Cyber Security News | Hacker News …
access access control application attack attackers broken access control cisco configuration configuration files control cross-site file files fix flaw found impact interface medium platform scripting software upload user interface validation vulnerability vulnerable xss