MOVEit Transfer 2020 web application Stored Cross-Site Scripting (XSS)
Progress MOVEit Transfer < 20201 Stored XSS (CVE-2020-28647) During a recent web application test engagement one of the applications in scope was a MOVEit Transfer 2020 web application While performing the assessment a Stored Cross-Site Scripting (XSS) vulnerability was identified This blog post will go though the discovery and exploitation of such vulnerability to ga