2 matches found
CVE-2018-12246
CVE-2018-12246 affects Symantec Web Isolation (WI) version 1.11 (prior to 1.11.21). The vulnerability is a reflected cross-site scripting (XSS) that allows an attacker to trick end users protected by WI into visiting a crafted URL, causing malicious JavaScript to run in the user’s browser within ...
Reflected XSS Vulnerability in Web Isolation
SUMMARY Symantec Web Isolation WI is susceptible to a reflected cross-site scripting XSS vulnerability. A remote attacker can target end users protected by WI with social engineering attacks using crafted URLs for legitimate web sites. A successful attack allows injecting malicious JavaScript cod...