CVE-2017-18014
Summary: CVE-2017-18014 affects Sophos XG Firewall with SFOS before 17.0.3 MR3. The vulnerability is a persistent XSS in the WAF log page (Control Center → Log Viewer → filter “Web Server Protection”) that is triggered by the HTTP POST User-Agent parameter. It is exploitable by an unauthenticated...