CVE-2020-35724 – ** UNSUPPORTED WHEN ASSIGNED ** Reflected XSS in Quest Policy Authority 8.1.2.200 allows r …

CVE-2020-35724 – UNSUPPORTED WHEN ASSIGNED Reflected XSS in Quest Policy Authority 8.1.2.200 allows r …

11 January 2021

Vuln ID: CVE-2020-35724

Published: 2021-01-11 03:15:13Z

Description: ** UNSUPPORTED WHEN ASSIGNED ** Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote attackers to inject malicious code into the browser via a specially crafted link to the Error.jsp file via the err parameter (or indirectly via the cpr, tcp, or abs parameter). NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

Source: NVD.NIST.GOV

Date:

11 January 2021

Categorie(s):

NVD

Tag(s):

NVD

Network Threats: A Step-by-Step Attack Demonstration25 April 2024
ESET integrates with Arctic Wolf to provide greater security visibility25 April 2024
JudgeO Online Code Editor Flaw Let Attackers Execute Code as Root User25 April 2024
Sublime Security secures $20 million to strengthen cloud email security and visibility25 April 2024
DragonForce Ransomware Group Uses LockBit’s Leaked Builder25 April 2024