May 14, 2024, 7:08 a.m. | Rémy Marot

Tenable Research Advisories

Solidus Stored Cross-Site Scripting

A researcher at Tenable discovered a Stored Cross-Site Scripting vulnerability in the order tracking URL, allowing users with sufficient privileges to inject malicious JavaScript.

Rémy Marot
Tue, 05/14/2024 - 03:08

cross-site inject javascript malicious order privileges researcher scripting tenable tracking url vulnerability

Sr. Product Manager

@ MixMode | Remote, US

Information Security Engineers

@ D. E. Shaw Research | New York City

Data Privacy Manager

@ EY | Sydney, NSW, AU, 2000

Senior Security Analyst (SOC)

@ Accesa & RaRo | Cluj-Napoca, Romania

Network & Security Engineer

@ Talan | Genève, Switzerland

Manager, Forensics and Litigation Support

@ MNP | Toronto, Ontario, Canada