An issue was discovered in Quali CloudShell 9.3. An XSS vulnerability in the login page allows an attacker to craft a URL, with a constructor.constructor substring in the username field, that executes a payload when the user visits the /Account/Login page.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2021-01-17T19:42:49

Updated: 2024-08-04T13:30:23.151Z

Reserved: 2020-07-21T00:00:00

Link: CVE-2020-15864

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2021-01-17T20:15:12.410

Modified: 2024-11-21T05:06:20.273

Link: CVE-2020-15864

cve-icon Redhat

No data.