CVE-2018-6545

Ipswitch MoveIt v8.1 is vulnerable to a Stored Cross-Site Scripting (XSS) vulnerability, as demonstrated by human.aspx. Attackers can leverage this vulnerability to send malicious messages to other users in order to steal session cookies and launch client-side attacks.
References
Link Resource
https://crowdshield.com/blog.php?name=ipswitch-moveit-stored-xss Exploit Third Party Advisory
Advertisement

NeevaHost hosting service

Configurations

Configuration 1 (hide)

cpe:2.3:a:ipswitch:moveit:8.1:*:*:*:*:*:*:*

Information

Published : 2018-02-02 01:29

Updated : 2018-02-14 07:08


NVD link : CVE-2018-6545

Mitre link : CVE-2018-6545


JSON object : View

CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

Advertisement

dedicated server usa

Products Affected

ipswitch

  • moveit