VYPR

OSNEXUS

by Nexus Concepts

CVEs (1)

  • CVE-2021-42083HigJul 10, 2023
    risk 0.57cvss 8.7epss 0.00

    An authenticated attacker is able to create alerts that trigger a stored XSS attack. POC * go to the alert manager * open the ITSM tab * add a webhook with the URL/service token value ' -h && id | tee /tmp/ttttttddddssss #' (whitespaces are tab characters) * …