Forcepoint Web Security 跨站脚本漏洞

漏洞信息详情

Forcepoint Web Security 8.x版本中存在跨站脚本漏洞。该漏洞源于WEB应用缺少对客户端数据的正确验证。攻击者可利用该漏洞执行客户端代码。

目前厂商已发布升级补丁以修复漏洞，补丁获取链接：

https://support.forcepoint.com/KBArticle?id=000017702

来源:CONFIRM

链接:https://help.forcepoint.com/security/CVE/CVE-2019-6146.html

来源:MISC

链接:https://packetstormsecurity.com/files/156274/Forcepoint-WebSecurity-8.5-Cross-Site-Scripting.html

来源:support.forcepoint.com

链接:https://support.forcepoint.com/KBArticle?id=000017702

来源:nvd.nist.gov

链接:https://nvd.nist.gov/vuln/detail/CVE-2019-6146

来源:vigilance.fr

链接:https://vigilance.fr/vulnerability/Forcepoint-Web-Security-Cross-Site-Scripting-via-Host-Header-31397

来源:www.exploit-db.com

链接:https://www.exploit-db.com/exploits/48029

来源:packetstormsecurity.com

链接:https://packetstormsecurity.com/files/156274/Forcepoint-WebSecurity-8.5-Cross-Site-Scripting.html

暂无