2 matches found
CVE-2012-5176
The CVE-2012-5176 entry corresponds to a cross-site scripting (XSS) vulnerability in KENT-WEB ACCESS REPORT versions 5.02 and earlier. The root cause is a flaw in how tags are embedded into the web page, which permits remote attackers to inject arbitrary script or HTML via those embedding vectors...
CVE-2012-5175
CVE-2012-5175 concerns an XSS vulnerability in KENT-WEB ACCESS REPORT (v4.2 and earlier). The issue arises in processing of access-log data, enabling remote attackers to inject arbitrary web script or HTML that may execute in a user’s browser. Affected product: ACCESS REPORT by KENT-WEB; versions...