Squid Multiple XSS injection vulnerability
- Date Published:2019-07-21
- Last Updated:2019-07-22
- Version Affected: 4.7
Squid is a high-performance proxy cache server that supports FTP, gopher, HTTPS, and HTTP protocols.This may allow an attacker to steal cookie-based authentication credentials and launch other attacks.
At present, the manufacturer has issued an update patch to fix the vulnerability, and the patch gets the link:
https://bugs.squid-cache.org/show_bug.cgi?Id = 4957