Security Advisory

CVE-2017-6396

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2017-03-02 06:00:00

Last updated 2026-02-13 16:09:18

Assigner mitre

State PUBLISHED

Description

An issue was discovered in WPO-Foundation WebPageTest 3.0. The vulnerability exists due to insufficient filtration of user-supplied data passed to the "webpagetest-master/www/compare-cf.php" URL. An attacker could execute arbitrary HTML and script code in a browser in the context of the vulnerable website.

← Browse all CVEs View on cve.org ↗