2 matches found
Neptune Web Server 3.0 - 404 Error Page Cross Site Scripting Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/28148/info Neptune Web Server is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser...
CVE-2012-2590
CVE-2012-2590 affects ESCON SupportPortal Pro 3.0. The vulnerability is multiple cross-site scripting (XSS) flaws that allow remote attackers to inject arbitrary web script or HTML via an e-mail message body. Exploitation vectors include (1) a SCRIPT element, (2) crafted SRC on an IFRAME, (3) cra...