XSS filter bypass vulnerability in Microsoft EdgeID: oval:org.secpod.oval:def:29996 | Date: (C)2015-10-14 (M)2024-03-06 |
Class: VULNERABILITY | Family: windows |
The host is installed with Microsoft Edge and is prone to a XSS filter bypass vulnerability. A flaw is present in the application, which fails to properly disable a HTML attribute in otherwise appropriately filtered HTTP response data. Successful exploitation could allow attackers to run initially disabled scripts in the wrong security context.
Platform: |
Microsoft Windows 10 |