Skip to content

Latest commit

 

History

History

Cross-site-scripting-DOM-based-IG-js

Folders and files

NameName
Last commit message
Last commit date

parent directory

..
 
 
 
 

Description:

The Inout Blockchain AltExchanger (version 1.2.1) is vulnerable to Cross-site scripting (DOM-based) Information Gathering for all java scripts - all architecture from inode /js. The attacker easily can take all information about the js infrastructure and he can use it for dangerous purposes. If this was in PRODUCTION the situation can be a little dangerous!

STATUS:

Severity:   High
Confidence: Tentative

Conclusion:

Improper disinfection of the admin inode.

More:

href