Web Appliance Security Vulnerabilities and Issues — Web Appliance CVE List

Lucene search

SophosWeb Appliance

2 matches found

CVE•added 2014/03/18 5:2 p.m.•42 views

CVE-2013-2643

Multiple cross-site scripting (XSS) vulnerabilities in Sophos Web Appliance before 3.7.8.2 allow remote attackers to inject arbitrary web script or HTML via the (1) xss parameter in an allow action to rss.php, (2) msg parameter to end-user/errdoc.php, (3) h parameter to end-user/ftp_redirect.php, o...

4.3CVSS5.7AI score0.00679EPSS

CVE•added 2023/06/30 2:15 a.m.•42 views

CVE-2023-33336

Reflected cross site scripting (XSS) vulnerability was discovered in Sophos Web Appliance v4.3.9.1 that allows for arbitrary code to be inputted via the double quotes.

4.8CVSS5.1AI score0.00033EPSS