CVE-2014-0338
WatchGuard Fireware XTM before 11.8.3 is affected by cross-site scripting in the firewall policy management page, exploitable via the pol_name parameter in firewall/policy. The root cause is improper input handling of the pol_name field, allowing remote attackers to inject arbitrary script/HTML t...