CVE-2023-5950 Rapid7 Velociraptor Reflected XSS

Nov. 10, 2023, 6:56 p.m. | Dr. Mike Cohen

This advisory covers a specific issue identified in Velociraptor and disclosed by a security code review. Rapid7 Velociraptor versions prior to 0.7.0-4 suffer from a reflected cross site scripting vulnerability.

advisory code code review cross site scripting cve issue rapid7 reflected xss review scripting security velociraptor vulnerability vulnerability disclosure xss

Visit resource

More from blog.rapid7.com / Rapid7 Blog

Metasploit Weekly Wrap-Up 05/03/24 6 hours ago | blog.rapid7.com

cve cve-2024 improvement metasploit +6

The Take Command Summit: A Stacked Agenda, and Killer Guest Speakers Coming Your Way May … 1 day, 12 hours ago | blog.rapid7.com

challenges coming command cybersecurity +14

The Business of Cybersecurity Ownership 2 days, 12 hours ago | blog.rapid7.com

accountability business can ciso +6

Velociraptor 0.7.2 Release: Digging Deeper than Ever with EWF Support, Dynamic DNS and More 3 days, 10 hours ago | blog.rapid7.com

discuss dns download dynamic +7

Metasploit Weekly Wrap-Up 04/26/24 1 week ago | blog.rapid7.com

addition application clusters community +20

USF College of Engineering Presents Rapid7 With 2024 Corporate Impact Award 1 week, 3 days ago | blog.rapid7.com

april award awards beyond +11

Unauthenticated CrushFTP Zero-Day Enables Complete Server Compromise 1 week, 3 days ago | blog.rapid7.com

access account account access administrator +26

Take Command Summit: Take Breaches from Inevitable to Preventable on May 21 1 week, 4 days ago | blog.rapid7.com

attack aws breaches command +14

Metasploit Weekly Wrap-Up 04/19/24 2 weeks ago | blog.rapid7.com

crushftp emergent threat response exploit framework +11

Senior Security Engineer - Detection and Response

@ Fastly, Inc. | US (Remote)

View on infosec-jobs.com

Application Security Engineer

@ Solidigm | Zapopan, Mexico

View on infosec-jobs.com

Defensive Cyber Operations Engineer-Mid

@ ISYS Technologies | Aurora, CO, United States

View on infosec-jobs.com

Manager, Information Security GRC

@ OneTrust | Atlanta, Georgia

View on infosec-jobs.com

Senior Information Security Analyst | IAM

@ EBANX | Curitiba or São Paulo

View on infosec-jobs.com

Senior Information Security Engineer, Cloud Vulnerability Research

@ Google | New York City, USA; New York, USA

View on infosec-jobs.com

View more jobs

all InfoSec news

CVE-2023-5950 Rapid7 Velociraptor Reflected XSS

More from blog.rapid7.com / Rapid7 Blog

Jobs in InfoSec / Cybersecurity

Senior Security Engineer - Detection and Response

Application Security Engineer

Defensive Cyber Operations Engineer-Mid

Manager, Information Security GRC

Senior Information Security Analyst | IAM

Senior Information Security Engineer, Cloud Vulnerability Research