Unrated severityNVD Advisory· Published Feb 5, 2021· Updated Aug 3, 2024
CVE-2021-26710
CVE-2021-26710
Description
A cross-site scripting (XSS) issue in the login panel in Redwood Report2Web 4.3.4.5 and 4.5.3 allows remote attackers to inject JavaScript via the signIn.do urll parameter.
Affected products
2- Redwood/Report2Webdescription
- Range: 4.3.4.5, 4.5.3
Patches
Vulnerability mechanics
References
2- vict0ni.me/redwood-report2web-xss-and-frame-injection/mitrex_refsource_MISC
- vict0ni.me/report2web-xss-frame-injection.htmlmitrex_refsource_MISC
News mentions
0No linked articles in our index yet.