K7498: Cross-site scripting vulnerability in download_plugin.php3 page

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

F5 FirePass 4100 SSL VPN Download_Plugin.PHP3跨站脚本漏洞

BUGTRAQ ID: 26412 CNCAN ID:CNCAN-2007111602 PR07-13: Cross-site Scripting / HTML injection on F5 FirePass 4100 SSL VPN 'downloadplugin.php3' server-side script F5 FirePass是一款安全套接层虚拟专用网SSL VPN解决方案。 F5 FirePass包含的DownloadPlugin.PHP3不正确过滤用户提交的URI数据，远程攻击者可以利用漏洞进行跨站脚本攻击获得敏感信息。...