Affects Version/s: None
Fix Version/s: None
There is a Cross Site Scripting vulnerability in OFBiz login form that allow a attacker to stole user's data.
- Redirection to another site:
- BeEF injection:
Same thing using "PASSWORD" instead of "USERNAME".