CVE-2010-0703

2010-02-2320:00:00

mitre

www.cve.org

AI Score

5.7

Confidence

High

EPSS

0.079

Percentile

94.3%

JSON

Cross-site scripting (XSS) vulnerability in wa/auth in PortWise SSL VPN 4.6 allows remote attackers to inject arbitrary web script or HTML via the reloadFrame parameter.

References

osvdb.org/62482

packetstormsecurity.org/1002-exploits/PR09-04.txt

secunia.com/advisories/38627

www.procheckup.com/vulnerability_manager/vulnerabilities/pr09-04

www.securityfocus.com/archive/1/509584/100/0/threaded

www.securityfocus.com/bid/38308

exchange.xforce.ibmcloud.com/vulnerabilities/56420