Limited Black Friday Offer:

Resourcespace - Reflected XSS Vulnerability CVE-2021-41951 Scanner

Remote attacker can perform a reflected cross site scripting attack (XSS) by injecting malicious payload.

Short Info

Level

Medium

Type

Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one

Url

Parent Category

Resourcespace - Reflected XSS Vulnerability CVE-2021-41951 Scanner Detail

ResourceSpace before 9.6 rev 18290 is affected by a reflected Cross-Site Scripting vulnerability in plugins/wordpress_sso/pages/index.php via the wordpress_user parameter. If an attacker is able to persuade a victim to visit a crafted URL, malicious JavaScript content may be executed within the context of the victim's browser.

https://www.horizon3.ai/multiple-vulnerabilities-in-resourcespace/