2 matches found
CVE-2009-3030
CVE-2009-3030 relates to Symantec SecurityExpressions Audit and Compliance Server (versions 4.1 and 4.1.1 and earlier) and covers multiple XSS/HTML-injection issues. The documented vulnerabilities arise from insufficient input validation and failing to properly encode error messages, allowing rem...
Symantec SecurityExpressions Audit and Compliance Server Multiple XSS
Symantec SecurityExpressions Audit and Compliance Server is installed on the remote host. The installed version is affected by multiple cross-site scripting vulnerabilities. - The web console fails to sanitize user-supplied input to certain unspecified parameters. An authorized user may be able t...