Quorum onQ OS – 6.0.0.5.2064 | Reflected Cross Site Scripting (XSS) | CVE-2024-44449 – Full Disclosure

by Joe-W · January 29, 2025

Posted by Shaikh Shahnawaz on Jan 29

[+] Credits: Shahnawaz Shaikh, Security Researcher at Cybergate Defense LLC
[+] twitter.com/_striv3r_

[Product]
Quorum onQ OS – 6.0.0.5.2064

Vulnerability Type]
Reflected Cross Site Scripting (XSS)

[Affected Component]
Login page get parameter ‘msg’ is vulnerable to Reflected Cross site
scripting

[CVE Reference]
CVE-2024-44449

[Security Issue]
Cross Site Scripting vulnerability in Quorum onQ OS…
– Read More – Full Disclosure