Lucene search
+L

28 matches found

cvelist
cvelist
added 2012/12/05 11:0 a.m.24 views

CVE-2012-4982

Open redirect vulnerability in assets/login on the Forescout CounterACT NAC device before 7.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the a parameter...

6.5AI score0.08658EPSS
Exploits2References2
exploitpack
exploitpack
added 2012/11/26 12:0 a.m.20 views

Forescout CounterACT - a Open Redirection

Forescout CounterACT - a Open Redirection source: https://www.securityfocus.com/bid/56687/info Forescout CounterACT is prone to an open-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks; other attacks...

7.3AI score
Exploits0
exploitdb
exploitdb
added 2012/11/26 12:0 a.m.33 views

Forescout CounterACT - 'a' Open Redirection

source: https://www.securityfocus.com/bid/56687/info Forescout CounterACT is prone to an open-redirection vulnerability because the application fails to properly sanitize user-supplied input. A successful exploit may aid in phishing attacks; other attacks are possible. Forescout CounterACT 6.3.4....

7AI score
Exploits0
nvd
nvd
added 2012/06/11 11:55 p.m.20 views

CVE-2012-1825

Multiple cross-site scripting XSS vulnerabilities in the status program on the ForeScout CounterACT appliance with software 6.3.3.2 through 6.3.4.10 allow remote attackers to inject arbitrary web script or HTML via 1 the loginname parameter in a forgotpass action or 2 the username parameter...

4.3CVSS5.8AI score0.00987EPSS
Exploits0References2
prion
prion
added 2012/06/11 11:55 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the status program on the ForeScout CounterACT appliance with software 6.3.3.2 through 6.3.4.10 allow remote attackers to inject arbitrary web script or HTML via 1 the loginname parameter in a forgotpass action or 2 the username parameter...

4.3CVSS6AI score0.00987EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2012/06/11 11:0 p.m.20 views

CVE-2012-1825

Multiple cross-site scripting XSS vulnerabilities in the status program on the ForeScout CounterACT appliance with software 6.3.3.2 through 6.3.4.10 allow remote attackers to inject arbitrary web script or HTML via 1 the loginname parameter in a forgotpass action or 2 the username parameter...

5.8AI score0.00987EPSS
Exploits0References2
cve
cve
added 2012/06/11 11:0 p.m.48 views

CVE-2012-1825

The CVE-2012-1825 entry concerns XSS vulnerabilities in the ForeScout CounterACT appliance (software 6.3.3.2–6.3.4.10) where the status program’s web interface is vulnerable. Specifically, attackers can inject arbitrary script via (1) loginname in a forgotpass action or (2) username, enabling ref...

4.3CVSS5.8AI score0.00987EPSS
Exploits0References2Affected Software1
cert
cert
added 2012/06/08 12:0 a.m.35 views

ForeScout CounterACT reflected XSS vulnerability

Overview The ForeScout CounterACT appliance contains reflected cross-site scripting XSS vulnerabilities. Description The web interface of the ForeScout CounterACT appliance contains reflected XSS vulnerabilities CWE-79. The following are a couple...

4.3CVSS5.8AI score0.00987EPSS
Exploits0References2
Rows per page
Query Builder