2FA VPN Authorization email link is vulnerable to XSS injection
Hello,
We have recently enabled 2 Factor Authentication for VPN Access on a Zywall 110. We noticed that the Authentication link is vulnerable to XSS injection, as displayed below:
https://Address/2FA-access.cgi?key=%22;%20alert(1)//
We removed the Address, but this is the link that is sent via email. We have modified the key to show a proof of concept.
Will there be a fix for this in future firmware updates?
We look forward to your reply.
We have recently enabled 2 Factor Authentication for VPN Access on a Zywall 110. We noticed that the Authentication link is vulnerable to XSS injection, as displayed below:
https://Address/2FA-access.cgi?key=%22;%20alert(1)//
We removed the Address, but this is the link that is sent via email. We have modified the key to show a proof of concept.
Will there be a fix for this in future firmware updates?
We look forward to your reply.
0
All Replies
-
Hi @inchica,We are aware of this issue and will fix it in the next official version.1
Zyxel Employee
Categories
- 6.8K All Categories
- 1.3K Nebula
- 26 Nebula Ideas
- 28 Nebula Status and Incidents
- 3.8K Security
- 199 Security Ideas
- 691 Switch
- 25 Switch Ideas
- 567 WirelessLAN
- 8 WLAN Ideas
- 4.5K Consumer Product
- 95 Service & License
- 212 New and Release
- 35 Security Advisories
- 477 FAQ
- 216 Nebula FAQ
- 107 Security FAQ
- 72 Switch FAQ
- 66 WirelessLAN FAQ
- Documents
- 20 Nebula Monthly Express
- 40 About Community
- 31 Security Highlight
