CVE-2023-2080

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Forcepoint Cloud Security Gateway CSG Portal on Web Cloud Security Gateway, Email Security Cloud allows Blind SQL Injection...

CVE-2023-2080

CVE-2023-2080 covers an SQL injection issue in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway and Email Security Cloud. The root cause cited is improper neutralization of special elements used in an SQL command, leading to Blind SQL Injection. Documents indicate affe...

CVE-2023-26291

CVE-2023-26291 affects Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud, and Forcepoint Web Security Portal on Hybrid. The issue is an improper neutralization of input during web page generation, enabling reflected Cross-Site Scripting via the log...

CVE-2023-26290

The CVE describes a Reflected Cross-Site Scripting (XSS) in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway and related Web/Web Security Portal components (login_reset_request.mhtml modules) that could allow an attacker to execute script in a victim’s browser. Root ca...

[CGS] Citrix Cloud Workspace launching Desktop via CSG is stuck at "connecting" and failed

Citrix Cloud Workspace launching Desktop/App via CSG Citrix Gateway Service is stuck at "connecting" and failed. In the Netscaler Gateway Service logs, seen in ns.log: Event "Application launch failed. Connect command sent to Controller."...

PT-2023-20589 · Forcepoint · Forcepoint Web Security +1

Name of the Vulnerable Software and Affected Versions: Forcepoint Cloud Security Gateway CSG versions before 03/29/2023 Forcepoint Web Security versions before 03/29/2023 Description: The issue is related to improper neutralization of input during web page generation, which allows reflected...

csg-comenius.nl Cross Site Scripting vulnerability OBB-2824397

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

Denial of Service Vulnerability in DT741-csg at Skyworth Digital Co.

"Skyworth Digital" is a national high-tech enterprise specializing in providing comprehensive and systematic digital home solutions and services for global users. A denial of service vulnerability exists in Skyworth Digital's DT741-csg, which can be exploited by attackers to cause a denial of...

Skyworth Digital Corporation DT541-csg suffers from a denial of service vulnerability

"Skyworth Digital" is a national high-tech enterprise specializing in providing comprehensive and systematic digital home solutions and services for global users. A denial of service vulnerability exists in Skyworth Digital's DT541-csg, which can be exploited by attackers to cause a denial of...

Design/Logic Flaw

Cisco IOS 12.424MDB9 and earlier on Content Services Gateway CSG devices does not properly implement the "parse error drop" feature, which allows remote attackers to bypass intended access restrictions via a crafted series of packets, aka Bug ID CSCug90143...

CVE-2013-5552

CVE-2013-5552 affects Cisco IOS 12.4(24)MDB9 and earlier on Content Services Gateway (CSG). The vulnerability lies in the parse error drop function, where faulty processing could allow an unauthenticated, remote attacker to bypass configured access policies by sending a crafted sequence of packet...