2020-02-28 22:38:38
mozilla
PUBLISHED
A reflected XSS vulnerability exists within the gateway, allowing an attacker to craft a specialized URL which could steal the users authentication token. When combined with CVE-2020-6803, an attacker could fully compromise the system.