2FA VPN Authorization email link is vulnerable to XSS injection
Hello,
We have recently enabled 2 Factor Authentication for VPN Access on a Zywall 110. We noticed that the Authentication link is vulnerable to XSS injection, as displayed below:
https://Address/2FA-access.cgi?key=%22;%20alert(1)//
We removed the Address, but this is the link that is sent via email. We have modified the key to show a proof of concept.
Will there be a fix for this in future firmware updates?
We look forward to your reply.
We have recently enabled 2 Factor Authentication for VPN Access on a Zywall 110. We noticed that the Authentication link is vulnerable to XSS injection, as displayed below:
https://Address/2FA-access.cgi?key=%22;%20alert(1)//
We removed the Address, but this is the link that is sent via email. We have modified the key to show a proof of concept.
Will there be a fix for this in future firmware updates?
We look forward to your reply.
0
All Replies
-
Hi @inchica,We are aware of this issue and will fix it in the next official version.1
Categories
- All Categories
- 415 Beta Program
- 2.3K Nebula
- 141 Nebula Ideas
- 94 Nebula Status and Incidents
- 5.5K Security
- 216 USG FLEX H Series
- 262 Security Ideas
- 1.4K Switch
- 71 Switch Ideas
- 1K Wireless
- 39 Wireless Ideas
- 6.3K Consumer Product
- 243 Service & License
- 382 News and Release
- 81 Security Advisories
- 27 Education Center
- 8 [Campaign] Zyxel Network Detective
- 3K FAQ
- 34 Documents
- 34 Nebula Monthly Express
- 83 About Community
- 71 Security Highlight