CVE-2009-0467

2009-02-0601:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.002

Percentile

60.3%

JSON

Cross-site scripting (XSS) vulnerability in proxy.html in Profense Web Application Firewall 2.6.2 and 2.6.3 allows remote attackers to inject arbitrary web script or HTML via the proxy parameter in a deny_log manage action.

References

osvdb.org/51659

secunia.com/advisories/33739

www.securityfocus.com/bid/33523

www.exploit-db.com/exploits/7919