Security Advisory

CVE-2023-2521

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-05-04 17:00:05
Last updated 2025-01-29 16:36:31
Assigner VulDB
State PUBLISHED

Description

A vulnerability was found in NEXTU NEXT-7004N 3.0.1. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formFilter of the component POST Request Handler. The manipulation of the argument url with the input <svg onload=alert(1337)> leads to cross site scripting. It is possible to launch the attack remotely. The identifier of this vulnerability is VDB-228012. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.