Cross-site-scripting-DOM-based-IG-js
Description:
The Inout Blockchain AltExchanger (version 1.2.1) is vulnerable to Cross-site scripting (DOM-based) Information Gathering for all java scripts - all architecture from inode /js. The attacker easily can take all information about the js infrastructure and he can use it for dangerous purposes. If this was in PRODUCTION the situation can be a little dangerous!
STATUS:
Severity: High
Confidence: Tentative
Conclusion:
Improper disinfection of the admin inode.
