[SYSS-2020-024] Qiata FTA – Persistent Cross-Site Scripting

Posted by Patrick Hener on Sep 29

Advisory ID: SYSS-2020-024
Product: Qiata FTA
Manufacturer: Secudos GmbH
Affected Version(s): <= Qiata FTA 1.70.19
Tested Version(s): Qiata FTA 1.70.19
Vulnerability Type: Cross-Site Scripting (CWE-79)
Risk Level: Medium
Solution Status: Solved
Manufacturer Notification: 2020-06-17
Solution Date: 2020-08-12
Public Disclosure: 2020-09-28
CVE Reference: CVE-2020-14294
Author of Advisory: Patrick Hener, SySS GmbH…

If you like the site, please consider joining the telegram channel or supporting us on Patreon using the button below.

Patreon

Original Source