2 matches found
CVE-2013-5005
CVE-2013-5005 describes multiple cross-site scripting (XSS) vulnerabilities in Tripwire Enterprise 8.2 and earlier, exploitable via ajaxRequest/methodCall.do. The vulnerability arises through the parameters m_target_class_name, m_target_method_name, or m_request_context_params, which could allow ...
CVE-2008-0578
CVE-2008-0578 describes a cross-site scripting (XSS) vulnerability in the web management login page of Tripwire Enterprise 7.0. The issue allows remote attackers to inject arbitrary web script or HTML via unspecified vectors. The NVD metrics assign a base score of 4.3 (Medium) with network attack...