| ଶୀର୍ଷକ | Huashengdun WebSSH <= 1.6.2 Cross Site Scripting |
|---|
| ବର୍ଣ୍ଣନା | A reflected XSS vulnerability exists in the port parameter of WebSSH <= v1.6.2. Unsanitized user input is reflected directly in the response, allowing arbitrary JavaScript execution in the victim’s browser. This issue is distinct from a previously reported XSS in the hostname parameter. |
|---|
| ଉତ୍ସ | ⚠️ https://github.com/4m3rr0r/PoCVulDb/blob/main/README2.md |
|---|
| ଉପଭୋକ୍ତା | 4m3rr0r (UID 85795) |
|---|
| ଦାଖଲ | 07/10/2025 12:09 PM (7 ମାସ[ସମ୍ପାଦନା] ago) |
|---|
| ମଧ୍ୟମ ଧରଣର | 07/19/2025 09:57 AM (9 days later) |
|---|
| ସ୍ଥିତି | ଗ୍ରହଣ କରାଯାଇଛି |
|---|
| VulDB ଏଣ୍ଟ୍ରି | 317000 [Huashengdun WebSSH ଯେପର୍ଯ୍ୟନ୍ତ 1.6.2 Login Page hostname/port କ୍ରସ୍ ସାଇଟ୍ ସ୍କ୍ରିପ୍ଟିଂ] |
|---|
| ପଏଣ୍ଟ | 18 |
|---|