CVE-2024-9467— Palo Alto Networks Expedition 安全漏洞

Expedition: Reflected Cross-Site Scripting Vulnerability Leads to Expedition Session Disclosure

A reflected XSS vulnerability in Palo Alto Networks Expedition enables execution of malicious JavaScript in the context of an authenticated Expedition user's browser if that user clicks on a malicious link, allowing phishing attacks that could lead to Expedition browser session theft.

N/A

在Web页面生成时对输入的转义处理不恰当(跨站脚本)

Palo Alto Networks Expedition 安全漏洞

Palo Alto Networks Expedition是美国Palo Alto Networks公司的一种有助于配置迁移、调优和丰富的工具。 Palo Alto Networks Expedition存在安全漏洞。攻击者利用该漏洞可以在用户浏览器环境中执行恶意JavaScript。

N/A

N/A