Epicentro E_7.3.2+ /ui/login Form Language Parameter Code Injection Vulnerability

CVE-2018-7633 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Code injection in the /ui/login form Language parameter in Epicentro E_7.3.2+ allows attackers to execute JavaScript code by making a user issue a manipulated POST request.

Learn more about our User Device Pen Test.