Lucene search
+L

CVE-2017-6340

🗓️ 05 Apr 2017 16:00:00Reported by mitreType 
cve
 cve
🔗 web.nvd.nist.gov👁 68 Views🌐 WEB

Trend Micro InterScan Web Security Virtual Appliance (IWSVA) 6.5 before CP 1746 allows injection of malicious JavaScript via new report creation, leading to XSS vulnerability

Related
Detection
Refs
Paths
ParameterPositionPathDescriptionCWE
namerequest bodyrest/commonlog/report/templateStored XSS via report template name field in create/check_nameCWE-79
template.namerequest bodyrest/commonlog/report/templateStored XSS when modifying/adding a report template containing scriptCWE-79
ftp__use_client_aclrequest bodyftp_clientip.jspPrivilege/ACL manipulation allowing Auditor to enable FTP accessCWE-285
use_client_acl_viewrequest bodyftp_clientip.jspPrivilege/ACL manipulation allowing Auditor to enable FTP accessCWE-285
iprequest bodyftp_clientip.jspPrivilege/ACL manipulation allowing Auditor to enable FTP accessCWE-285
descrequest bodyftp_clientip.jspPrivilege/ACL manipulation allowing Auditor to enable FTP accessCWE-285
itemlistrequest bodyftp_clientip.jspPrivilege/ACL manipulation allowing Auditor to enable FTP accessCWE-285
CSRFGuardTokenrequest bodyservlet/com.trend.iwss.gui.servlet.XMLRPCcert?action=exportcertSensitive information disclosure via CA certificate exportCWE-312
oprequest bodyservlet/com.trend.iwss.gui.servlet.XMLRPCcert?action=exportcertSensitive information disclosure via CA certificate exportCWE-312
defaultcarequest bodyservlet/com.trend.iwss.gui.servlet.XMLRPCcert?action=exportcertSensitive information disclosure via CA certificate exportCWE-312
Rows per page

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

17 Jun 2026 01:22Current
5.7Medium risk
Vulners AI Score5.7
CVSS 23.5
CVSS 35.4
EPSS0.02465
68