Lucene search
K

16 matches found

NVD
NVD
added 2015/03/27 2:59 p.m.23 views

CVE-2015-2761

Cross-site scripting XSS vulnerability in the Exceptions and Scanning Exceptions Pages in Websense TRITON AP-WEB before 8.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.00931EPSS
Exploits0References2
Prion
Prion
added 2015/03/27 2:59 p.m.16 views

Authentication flaw

Websense TRITON AP-WEB before 8.0.0 allows remote attackers to enumerate Windows domain user accounts via vectors related to HTTP authentication...

5CVSS7.2AI score0.01251EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2015/03/27 2:59 p.m.13 views

Cross site scripting

Cross-site scripting XSS vulnerability in the Exceptions and Scanning Exceptions Pages in Websense TRITON AP-WEB before 8.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.00931EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/03/27 2:0 p.m.21 views

CVE-2015-2761

Cross-site scripting XSS vulnerability in the Exceptions and Scanning Exceptions Pages in Websense TRITON AP-WEB before 8.0.0 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.00931EPSS
Exploits0References2
CVE
CVE
added 2015/03/27 2:0 p.m.51 views

CVE-2015-2762

Websense TRITON AP-WEB (before 8.0.0) is affected. The vulnerability allows remote attackers to enumerate Windows domain user accounts via HTTP authentication-related vectors. Root cause is exposure in the AP-WEB authentication flow prior to version 8.0.0. Impact includes potential information di...

5CVSS6.8AI score0.01251EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2015/03/27 2:0 p.m.49 views

CVE-2015-2761

The CVE-2015-2761 entry concerns a Cross-Site Scripting (XSS) vulnerability in the Websense TRITON AP-WEB product (and related TRITON/WEB suites) on the Exceptions and Scanning Exceptions Pages. The underlying issue allows remote attackers to inject arbitrary script/HTML via unspecified vectors, ...

4.3CVSS5.8AI score0.00931EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2015/03/27 2:0 p.m.24 views

CVE-2015-2762

Websense TRITON AP-WEB before 8.0.0 allows remote attackers to enumerate Windows domain user accounts via vectors related to HTTP authentication...

6.6AI score0.01251EPSS
Exploits0References2
NVD
NVD
added 2015/03/26 2:59 p.m.15 views

CVE-2015-2748

Websense TRITON AP-WEB before 8.0.0 does not properly restrict access to files in explorerwse/, which allows remote attackers to obtain sensitive information via a direct request to a 1 Web Security incident report or the 2 Explorer configuration websense.ini file...

5CVSS6AI score0.02272EPSS
Exploits1References5
Prion
Prion
added 2015/03/26 2:59 p.m.13 views

Information disclosure

Websense TRITON AP-WEB before 8.0.0 does not properly restrict access to files in explorerwse/, which allows remote attackers to obtain sensitive information via a direct request to a 1 Web Security incident report or the 2 Explorer configuration websense.ini file...

5CVSS6.6AI score0.02272EPSS
Exploits1References5Affected Software4
Cvelist
Cvelist
added 2015/03/26 2:0 p.m.20 views

CVE-2015-2748

Websense TRITON AP-WEB before 8.0.0 does not properly restrict access to files in explorerwse/, which allows remote attackers to obtain sensitive information via a direct request to a 1 Web Security incident report or the 2 Explorer configuration websense.ini file...

6AI score0.02272EPSS
Exploits1References5
NVD
NVD
added 2015/03/25 2:59 p.m.18 views

CVE-2015-2703

Multiple cross-site scripting XSS vulnerabilities in Websense TRITON AP-WEB before 8.0.0 and V-Series 7.7 appliances allow remote attackers to inject arbitrary web script or HTML via the 1 ws-userip in the ws-encdata parameter to cve-bin/moreBlockInfo.cgi in the Data Security block page or 2...

4.3CVSS5.7AI score0.0249EPSS
Exploits1References9
Prion
Prion
added 2015/03/25 2:59 p.m.11 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Websense TRITON AP-WEB before 8.0.0 and V-Series 7.7 appliances allow remote attackers to inject arbitrary web script or HTML via the 1 ws-userip in the ws-encdata parameter to cve-bin/moreBlockInfo.cgi in the Data Security block page or 2...

4.3CVSS6AI score0.0249EPSS
Exploits1References9Affected Software2
NVD
NVD
added 2015/03/25 2:59 p.m.16 views

CVE-2014-9711

Multiple cross-site scripting XSS vulnerabilities in the Investigative Reports in Websense TRITON AP-WEB before 8.0.0 and Web Security and Filter, Web Security Gateway, and Web Security Gateway Anywhere 7.8.3 before Hotfix 02 and 7.8.4 before Hotfix 01 allow remote attackers to inject arbitrary w...

4.3CVSS5.8AI score0.02505EPSS
Exploits1References11
Prion
Prion
added 2015/03/25 2:59 p.m.16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in the Investigative Reports in Websense TRITON AP-WEB before 8.0.0 and Web Security and Filter, Web Security Gateway, and Web Security Gateway Anywhere 7.8.3 before Hotfix 02 and 7.8.4 before Hotfix 01 allow remote attackers to inject arbitrary w...

4.3CVSS6.1AI score0.02505EPSS
Exploits1References11Affected Software5
Cvelist
Cvelist
added 2015/03/25 2:0 p.m.26 views

CVE-2014-9711

Multiple cross-site scripting XSS vulnerabilities in the Investigative Reports in Websense TRITON AP-WEB before 8.0.0 and Web Security and Filter, Web Security Gateway, and Web Security Gateway Anywhere 7.8.3 before Hotfix 02 and 7.8.4 before Hotfix 01 allow remote attackers to inject arbitrary w...

5.8AI score0.02505EPSS
Exploits1References11
CVE
CVE
added 2015/03/25 2:0 p.m.43 views

CVE-2014-9711

Websense TRITON products prior to patching show a documented XSS flaw (CVE-2014-9711) in Investigative Reports. Specifically, versions Websense TRITON AP-WEB before 8.0.0 and Web Security components (Web Security and Filter, Web Security Gateway, Web Security Gateway Anywhere) prior to Hotfix 02 ...

4.3CVSS5.9AI score0.02505EPSS
Exploits1References11Affected Software5
Rows per page
Query Builder