Site icon API Security Blog

Cross-Site Scripting (XSS)

github.com/ossrs/srs is vulnerable to Cross-Site Scripting. The vulnerability is due to insufficient input validation on the /api/v1/vhosts/vid-?callback= endpoint. This allowing the injection of malicious JavaScript payloads through the callback function…Read More

Exit mobile version