3 matches found
Cross site scripting
Cross-site scripting XSS vulnerability in the management interface on the Cisco IronPort Encryption Appliance with software before 6.5.3 allows remote attackers to inject arbitrary web script or HTML via the header parameter to the default URI under admin/, aka bug ID 72410...
CVE-2012-0340
Cross-site scripting XSS vulnerability in the management interface on the Cisco IronPort Encryption Appliance with software before 6.5.3 allows remote attackers to inject arbitrary web script or HTML via the header parameter to the default URI under admin/, aka bug ID 72410...
CVE-2012-0340
The CVE refers to Cisco IronPort Encryption Appliance management interface: an XSS vulnerability in the default admin/ URI, exploitable via a header parameter to inject script/HTML. Affected product/version: Cisco IronPort Encryption Appliance with software before 6.5.3. Root cause: reflective XS...