4 matches found
U.S. Dept Of Defense: DOM-XSS
A DOM-XSS vulnerability was found on a subdomain of a website, which could allow an attacker with access to the Siteminder CA to perform a cross-site scripting attack and cause information leaks, privilege escalation, and/or denial of service. The vulnerability was assigned CVE-2013-5968 and a...
crosscountryroads.com Cross Site Scripting vulnerability OBB-3301602
Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...
CVE-2013-5968
CVE-2013-5968 is a cross-site scripting (XSS) vulnerability affecting CA SiteMinder 12.0–12.51 and SiteMinder 6 Web Agents. The issue allows remote attackers to inject arbitrary script or HTML via vectors involving the double-quote character. The NVD entry lists a Medium severity (CVSSv2 base sco...
CA20131024-01: Security Notice for CA SiteMinder
-----BEGIN PGP SIGNED MESSAGE----- CA20131024-01: Security Notice for CA SiteMinder Issued: October 24, 2013 CA Technologies Support is alerting customers to a potential vulnerability in CA SiteMinder that can be mitigated by utilizing existing product functionality. The vulnerability,...