Oxwall 1.8.0: XSS & Open Redirect

Posted by Curesec Research Team (CRT) on Sep 15

Security Advisory – Curesec Research Team

1. Introduction

Affected Product: Oxwall 1.8.0 (build 9900)
Fixed in: 1.8.2
Fixed Version Link: https://developers.oxwall.com/download
Vendor Website: http://www.oxwall.org/
Vulnerability Type: XSS & Open Redirect
Remote Exploitable: Yes
Reported to vendor: 11/21/2015
Disclosed to public: 09/15/2016
Release mode: Coordinated Release
CVE: n/a
Credits…

Leave a Reply