Lucene search
PRIOn knowledge basePRION:CVE-2014-2879HistoryApr 17, 2014 - 2:55 p.m.
Cross site scripting
2014-04-1714:55:00
PRIOn knowledge base
www.prio-n.com
Multiple cross-site scripting (XSS) vulnerabilities in Dell SonicWALL Email Security 7.4.5 and earlier allow remote authenticated administrators to inject arbitrary web script or HTML via (1) the uploadPatch parameter to the System/Advanced page (settings_advanced.html) or (2) the uploadLicenses parameter in the License management (settings_upload_dlicense.html) page.
| CPE | Name | Operator | Version |
|---|---|---|---|
| email_security_appliance | le | 7.4.5 |
References
seclists.org/fulldisclosure/2014/Mar/409
www.securityfocus.com/archive/1/531642/100/0/threaded
www.securityfocus.com/bid/66501
www.securitytracker.com/id/1029965
www.sonicwall.com/us/shared/download/Support-Bulletin_Email-Security_Scripting_Vulnerability__Resolved_in__ES746.pdf
www.vulnerability-lab.com/get_content.php?id=1191
Related
vulnerlab
vulnerlab
Dell SonicWall EMail Security 7.4.5 - Multiple Vulnerabilities
2014-03-25 00:00:00
Dell SonicWall EMail Security 7.4.5 - Multiple Vulnerabilities
2014-03-25 00:00:00
cvelist
cvelist
CVE-2014-2879
2014-04-17 14:00:00
cve
cve
CVE-2014-2879
2014-04-17 14:55:12
nvd
nvd
CVE-2014-2879
2014-04-17 14:55:12