8 matches found
CVE-2022-35416
H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS...
EUVD-2022-38304
Malicious code in bioql PyPI...
CVE-2022-35416
H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS...
CVE-2022-35416
H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS...
CVE-2022-35416
H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS...
CVE-2022-35416
H3C SSL VPN through 2022-07-10 allows wnm/login/login.json svpnlang cookie XSS...
CVE-2022-35416
The CVE-2022-35416 entry concerns H3C SSL VPN prior to or through 2022-07-10. The connected nuclei template confirms a cookie-based cross-site scripting vulnerability in the wnm/login/login.json svpnlang parameter, exploitable via the svpnlang cookie to inject scripts in the victim’s browser. Aff...
PT-2022-22816 · H3C · H3C Ssl Vpn
Name of the Vulnerable Software and Affected Versions: H3C SSL VPN versions through 2022-07-10 Description: The issue allows for XSS through the svpnlang cookie in the wnm/login/login.json API endpoint. Recommendations: For versions through 2022-07-10, as a temporary workaround, consider...