F5 FirePass - /vdesk/admincon/index.php sql_matchscope Parameter XSS

ID SSV:85200
Type seebug
Reporter Root
Modified 2014-07-01T00:00:00


No description provided by source.

                                                source: http://www.securityfocus.com/bid/29574/info
F5 FirePass SSL VPN is prone to multiple cross-site request-forgery vulnerabilities because it fails to adequately sanitize user-supplied input.
Exploiting these issues may allow a remote attacker to execute arbitrary actions in the context of the affected application.
FirePass 6.0.2 hotfix 3 is vulnerable; other versions may also be affected.