Stored Cross-site Scripting In IDAttend’s IDWeb Application

Discovered by Jack Misiura on behalf of The Missing Link Security

Vulnerability Details

Stored cross-site scripting in the IDAttend’s IDWeb application 3.1.013 allows attackers to hijack the browsing session of the logged in user.   

Affected Versions

Discovered in: 3.1.013

Fixed Versions

Fixed in: 3.1.053

Latest News