Cross-Site Scripting (XSS) Vulnerability in Redwood Report2Web Login Panel

Cross-Site Scripting (XSS) Vulnerability in Redwood Report2Web Login Panel

CVE-2021-26710 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

A cross-site scripting (XSS) issue in the login panel in Redwood Report2Web 4.3.4.5 and 4.5.3 allows remote attackers to inject JavaScript via the signIn.do urll parameter.

Learn more about our Web App Pen Testing.