4 matches found
SA40211 - [Pulse Secure] Cross site scripting issue (CVE-2016-4790)
Ivanti 4th of March 2024 - This isn't an active SA and any new edits are part of an article maintenance project. A cross site scripting issue has been discovered in the Pulse Connect Secure device. This issue exists in a file that is located in the authenticated area of the administrative user...
CVE-2016-4790
Cross-site scripting XSS vulnerability in the administrative user interface in Pulse Connect Secure PCS 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r9, and 7.4 before 7.4r13.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2016-4790
Cross-site scripting XSS vulnerability in the administrative user interface in Pulse Connect Secure PCS 8.2 before 8.2r1, 8.1 before 8.1r2, 8.0 before 8.0r9, and 7.4 before 7.4r13.4 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...
CVE-2016-4790
Pulse Connect Secure (PCS) administrators are impacted by a cross-site scripting (XSS) vulnerability in the admin UI described in CVE-2016-4790. Affected PCS versions include 7.4 before 7.4r13.4, 8.0 before 8.0r9, 8.1 before 8.1r2, and 8.2 before 8.2r1, with the issue caused by an XSS flaw in the...