TOUGHRADIUS
Wiki
  • README
  • Security Update: XSS Vulnerability Fix
  • config
  • docker
  • freeRADIUS integration
  • tr069
    • tr069_events
  • common
    • XMLX
  • docs
    • documents
      • Explanation of nouns
      • Mikrotik TR069 Client Setup for ToughRADIUS
      • ToughRADIUS Defined TR069 Preset Template
      • Introduction to BRAS
      • The Cisco BRAS device is connected to the ToughRADIUS server
      • ToughRADIUS Configuration
      • database
      • ToughRADIUS Docker Quick Deployment
      • ToughRADIUS 对 EAP 认证方法的支持
      • FreeRadius rest module Configuration
      • freeRADIUS integration
      • ## H3C 设备配置对接 ToughRADIUS
      • Huawei device configuration and interconnection ToughRADIUS
      • ToughRADIUS Quick start
      • ToughRADIUS 常见问题
      • Docker-compose 部署
      • ToughRADIUS Data Model
      • tr069_cert
      • Event type (meaning corresponding to EVENT CODE)
      • Mikrotik TR069 Client Setup for ToughRADIUS
      • zh-cn
        • ToughRADIUS 快速安装指南
Powered by GitBook
On this page
  • Affected Versions
  • Fixed Versions
  • Recommended Actions
  • Reporting Security Issues

Was this helpful?

Edit on GitHub

Security Update: XSS Vulnerability Fix

PreviousREADMENextconfig

Last updated 11 months ago

Was this helpful?

We have released a new version (v8.0.7) that addresses a critical security vulnerability related to cross-site scripting (XSS). The issue was found in the errmsg parameter handling in the login endpoint.

Affected Versions

  • Versions 8.0.1 ~ 8.0.7

Fixed Versions

  • Version v8.0.8

Recommended Actions

We strongly recommend all users to update to the latest version (1.0.3) immediately. You can update your project by following the instructions in our documentation.

Reporting Security Issues

If you find any security issues, please report them to . We appreciate your help in keeping our project secure.

Thank you for your attention to this important update.

  • The Security Team

jamiesun.net@gmail.com