2 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities in F5 FirePass SSL VPN allow remote attackers to inject arbitrary web script or HTML via 1 the xcho parameter to my.logon.php3; the 2 topblue, 3 midblue, 4 wtopblue, and certain other Custom color parameters in a per action to...
CVE-2006-3550
CVE-2006-3550 concerns multiple cross-site scripting (XSS) vulnerabilities in F5 Networks FirePass 4100 5.x . The affected component is the web interface, with the flaw enabling remote attackers to inject arbitrary web script or HTML via unspecified "writable form fields and hidden fields," inclu...