3 matches found
Riverbed SteelApp (Stingray) Traffic Manager < 9.7 Multiple XSS
The remote host is a Riverbed SteelApp formerly known as Stingray Traffic Manager running a version of the web user interface prior to 9.7. It is, therefore, affected by multiple cross-site scripting vulnerabilities in the 'locallog.cgi' script due to improper validation of user-supplied input to...
CVE-2014-5348
Cross-site scripting XSS vulnerability in apps/zxtm/locallog.cgi in Riverbed Stingray aka SteelApp Traffic Manager Virtual Appliance 9.6 patchlevel 9620140312 allows remote attackers to inject arbitrary web script or HTML via the logfile parameter...
CVE-2014-5348
Cross-site scripting XSS vulnerability in apps/zxtm/locallog.cgi in Riverbed Stingray aka SteelApp Traffic Manager Virtual Appliance 9.6 patchlevel 9620140312 allows remote attackers to inject arbitrary web script or HTML via the logfile parameter...