One Article Review
| Source |  IT Security Guru |
|---|---|
| Identifiant | 2197138 |
| Date de publication | 2021-01-15 17:06:30 (vue: 2021-01-15 17:07:02) |
| Titre | XSS vulnerability affects government websites (Recyclage) |
| Texte | An undisclosed Cross-Site Scripting (XSS) vulnerability in Apache Velocity Tools can be exploited by unauthenticated attackers to target government sites, including NASA, BleepingComputer reported today. Although 90 days have elapsed since the vulnerability was reported and patched, BleepingComputer is not aware of a formal disclosure made by the project.Security researcher Jackson Henry of the Sakura Samurai ethical hacking group […] |
| Notes | ★★★★ |
| Envoyé | Oui |
| Condensat | affects although apache appeared attackers aware bleepingcomputer can cross days disclosure elapsed exploited first formal government group guru hacking have henry of including made nasa not patched post project reported researcher jackson samurai ethical scripting security since site sites target the sakura today tools unauthenticated undisclosed velocity vulnerability websites xss |
| Tags | Vulnerability |
| Stories | |
| Move | 
|
Les reprises de l'article (1):
| Source |  Bleeping Computer |
|---|---|
| Identifiant | 2194861 |
| Date de publication | 2021-01-15 05:05:05 (vue: 2021-01-15 11:05:29) |
| Titre | Undisclosed Apache Velocity XSS vulnerability impacts GOV sites |
| Texte | An undisclosed XSS vulnerability in Apache Velocity Tools can be exploited by unauthenticated attackers to target government sites, including NASA. [...] |
| Notes | |
| Envoyé | Oui |
| Condensat | apache attackers can exploited gov government impacts including nasa sites target tools unauthenticated undisclosed velocity vulnerability xss |
| Tags | Vulnerability |
| Stories | |
| Move |
|
L'article ne semble pas avoir été repris sur un précédent.