vendor:
hipergate
by:
Unknown
7.5
CVSS
HIGH
Cross-Site Scripting (XSS)
79
CWE
Product Name: hipergate
Affected Version From: KnowGate hipergate 4.0.12
Affected Version To: Unknown
Patch Exists: No
Related CWE:
CPE: a:knowgate:hipergate:4.0.12
Platforms Tested:
Unknown
Cross-Site Scripting Vulnerabilities in KnowGate hipergate
The application fails to properly sanitize user-supplied input, leading to multiple XSS vulnerabilities. An attacker can execute arbitrary script code in the browser of an unsuspecting user, potentially stealing authentication credentials and launching further attacks.
Mitigation:
Implement proper input validation and output encoding to prevent XSS attacks.