5.3 Medium
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.0%
Cross-site scripting (XSS) vulnerability in F-Secure Messaging Secure Gateway 7.5.0 before Patch 1862 allows remote authenticated administrators to inject arbitrary web script or HTML via the new parameter in the SysUser module to admin.
seclists.org/fulldisclosure/2014/Apr/223
secunia.com/advisories/58038
www.f-secure.com/en/web/labs_global/fsc-2014-2