417 matches found
Websense TRITON Detection
Binary data websensetritonuscdetect.nbin...
Websense TRITON 7.8 Multiple Vulnerabilities
The remote host is running Websense TRITON version 7.8.2 through 7.8.4. It is, therefore, potentially affected by multiple vulnerabilities : - Multiple cross-site scripting vulnerabilities exist in the Investigative Reports due to a failure to properly validate the input to the 'ReportName'...
Websense TRITON 7.8 Source Code Disclosure
The version of Websense TRITON running on the remote web server contains a flaw in handling a JSP script request having an appended double quote character. This causes the source code of the script to be returned instead of it being executed. An unauthenticated, remote attacker can exploit this...
Websense TRITON Unauthorized File Disclosure
The version of Websense TRITON running on the remote web server does not properly restrict access to files in the 'explorerwse/' path. A remote attacker, by using a direct request to a Web Security incident report or the Explorer configuration websense.ini file, can thereby gain access to sensiti...
Websense Content Gateway certificates check vulnereability
Compromised certificates are incorrectly checked...
Certificate trust vulnerability in Websense Content Gateway
SUMMARY Websense Content Gateway proxy explicitly trusts compromised certificate authorities Affected versions: Content Gateway 7.8.x Not affected: Content Gateway 7.7.x, 8.0 DESCRIPTION Websense Content Gateway is a filtering web proxy and content inspection application based on a modified...
Websense TRITON V-Series appliances directory traversal vulnerability
Websense TRITON V-Series is a V-Series module used in Websense applications from Websense USA. A directory traversal vulnerability in Websense TRITON V-Series appliances prior to version 8.0.0 allows an attacker to read arbitrary files via unspecified vectors...
Websense TRITON AP-EMAIL PEM Has Multiple Cross-Site Request Forgery Vulnerabilities
Websense TRITON is a unified content architecture to protect data security. A cross-site request forgery vulnerability in Websense TRITON AP-EMAIL Personal Email Manager PEM allows remote attackers to construct malicious URIs that can be tricked into being resolved by a user, which can then be us...
Multiple Cross-Site Scripting Vulnerabilities in Websense TRITON AP-DATA
Websense TRITON is the Unified Content Architecture for data security. Websense TRITON AP-DATA suffers from multiple cross-site scripting vulnerabilities that can be exploited by remote attackers to inject malicious script or HTML code that can be used to gain access to sensitive information or...
Websense TRITON V-Series appliances SVM Arbitrary File Upload Vulnerability
Websense TRITON is a unified content architecture to protect data security. A security vulnerability in the Websense TRITON V-Series appliances SVM allows remote attackers to exploit the vulnerability to upload arbitrary files...
Unspecified Information Disclosure Vulnerability in Websense TRITON AP-EMAIL
Websense TRITON is the Unified Content Architecture for data security. An unspecified security vulnerability exists in the Websense TRITON AP-EMAIL autocomplete feature, which could be exploited by attackers to gain access to sensitive information...
Unspecified Cross-Site Scripting Vulnerability in Websense TRITON AP-EMAIL
Websense TRITON is the Unified Content Architecture for data security. A cross-site scripting vulnerability exists in Websense TRITON AP-EMAIL, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be used to gain access to sensitive...
Unspecified Vulnerability in Websense TRITON AP-EMAIL
Websense TRITON is the Unified Content Architecture for data security. An unspecified security vulnerability exists in Websense TRITON AP-EMAIL port 17703, no detailed vulnerability details are available at this time...
Websense TRITON AP-EMAIL mail server plaintext password vulnerability
Websense TRITON is the Unified Content Architecture for data security. The Websense TRITON AP-EMAIL mail server uses plaintext password storage, allowing remote attackers to exploit vulnerabilities to gain access to sensitive information...
Websense TRITON AP-EMAIL Brute Force Vulnerability
Websense TRITON is the Unified Content Architecture for data security. A brute force vulnerability in Websense TRITON AP-EMAIL Personal Email Manager PEM allows attackers to submit a special request to brute force an account...
Websense TRITON AP-EMAIL Clickjacking Vulnerability
Websense TRITON is a unified content architecture to protect data security. A clickjacking vulnerability exists in Websense TRITON AP-EMAIL, which allows attackers to construct malicious URIs, trick users into parsing them, and spoof user communications...
Websense TRITON AP-WEB Exception and Scan Exception Page Cross-Site Scripting Vulnerability
Websense TRITON is the Unified Content Architecture for data security. Websense TRITON AP-WEB Exceptions and Scanning Exceptions Pages suffers from a cross-site scripting vulnerability that allows remote attackers to exploit the vulnerability to inject malicious script or HTML code, which can be...
Websense TRITON V-Series appliances Arbitrary File Read Information Disclosure Vulnerability
Websense TRITON is the Unified Content Architecture for data security. A security vulnerability in versions prior to Websense TRITON V-Series appliances 7.8.3 hotfix 03 and 7.8.4 hotfix 01 allows remote administrators to read arbitrary files and password information...
Unspecified Vulnerability in Websense TRITON AP-WEB
Websense TRITON is the Unified Content Architecture for data security. Websense TRITON AP-WEB HTTP authentication unspecified security vulnerability allows attackers to submit a special request to enumerate windows domain users...
Websense Triton and V-Series CLU Arbitrary Command Execution Vulnerability
Websense TRITON is the Unified Content Architecture for data security. An arbitrary command execution vulnerability exists in the Network Diagnostic Tool CommandLineServlet in the CLU in Websense TRITON AP-WEB 7.8.3 and V-Series appliances, which could allow a remotely authenticated user to execu...