3 matches found
SonicWALL NSA 2400 Improper Neutralization of Input During Web Page Generation (CVE-2014-2589)
Cross-site scripting XSS vulnerability in the Dashboard Backend service stats/dashboard.jsp in SonicWall Network Security Appliance NSA 2400 allows remote attackers to inject arbitrary web script or HTML via the sn parameter. This plugin only works with Tenable.ot. Please visit...
Dell SonicWALL NSA 2400 'stats/dashboard.jsp' Cross Site Scripting Vulnerability
Cross-site scripting XSS vulnerability in the Dashboard Backend service stats/dashboard.jsp in SonicWall Network Security Appliance NSA 2400 allows remote attackers to inject arbitrary web script or HTML via the sn parameter. CVE: CVE-2014-2589 Last updated: March 12, 2018, 4:19 p.m...
CVE-2014-2589
CVE-2014-2589 describes a Cross-Site Scripting (XSS) vulnerability in the Dashboard Backend service (stats/dashboard.jsp) of SonicWall Network Security Appliance (NSA) 2400. The issue allows remote attackers to inject arbitrary web script or HTML via the sn parameter. Documentation confirms the a...