Squid Multiple XSS injection vulnerability

Summary

Squid is a high-performance proxy cache server that supports FTP, gopher, HTTPS, and HTTP protocols.This may allow an attacker to steal cookie-based authentication credentials and launch other attacks.


Solution

At present, the manufacturer has issued an update patch to fix the vulnerability, and the patch gets the link:

https://bugs.squid-cache.org/show_bug.cgi?Id = 4957