Описание
Multiple payment terminal versions contain non-persistent cross-site scripting vulnerabilities in billing and payment information input fields. Attackers can inject malicious script code through vulnerable parameters to manipulate client-side requests and potentially execute session hijacking or phishing attacks.
Multiple payment terminal versions contain non-persistent cross-site scripting vulnerabilities in billing and payment information input fields. Attackers can inject malicious script code through vulnerable parameters to manipulate client-side requests and potentially execute session hijacking or phishing attacks.
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2021-47885
- https://www.criticalgears.com/product/authorize-net-payment-terminal
- https://www.criticalgears.com/product/paypal-pro-payment-terminal
- https://www.criticalgears.com/product/stripe-payment-terminal
- https://www.vulncheck.com/advisories/payment-terminal-multiple-versions-non-persistent-cross-site-scripting
- https://www.vulnerability-lab.com/get_content.php?id=2280
Связанные уязвимости
Multiple payment terminal versions contain non-persistent cross-site scripting vulnerabilities in billing and payment information input fields. Attackers can inject malicious script code through vulnerable parameters to manipulate client-side requests and potentially execute session hijacking or phishing attacks.