3 matches found
CVE-2018-20808
An XSS issue has been found with rd.cgi in Pulse Secure Pulse Connect Secure 8.3RX before 8.3R3 due to improper header sanitization. This is not applicable to 8.1RX...
Pulse Connect Secure XSS (SA3877)
According to its self-reported version, the version of Pulse Connect Secure running on the remote host is 8.3Rx prior to 8.3R3 It is, therefore, affected by a cross-site scripting vulnerability in rd.cgi due to improper header sanitization. An unauthenticated, remote attacker can exploit this, by...
CVE-2018-20808
Pulse Connect Secure is affected by a cross-site scripting vulnerability in the rd.cgi component due to improper header sanitization. Affected products are Pulse Secure Pulse Connect Secure 8.3RX before 8.3R3 (not applicable to 8.1RX). The issue can be exploited via a crafted URL leading to scrip...