XSS flaws in Zscaler Cloud management software allow logged attackers to hack coworkers

Zscaler has fixed persistent XSS vulnerabilities affecting Zscaler Cloud management software that allow logged attackers to hack coworkers. Serious cross-site scripting (XSS) flaws in the Zscaler Cloud management software could be exploited by attackers to inject malicious HTML and JavaScript into the browsers of other users who visit the portal.

Source: XSS flaws in Zscaler Cloud management software allow logged attackers to hack coworkers