Computer Security
[EN] securityvulns.ru no-pyccku


Juniper Secure Access crossite scripting
Published:29.07.2013
Source:
SecurityVulns ID:13221
Type:remote
Threat Level:
5/10
Description:Crossite scripting in SSLVPN.
Affected:JUNIPER : Juniper Secure Access 7.3
CVE:CVE-2012-5460 (Cross-site scripting (XSS) vulnerability in the help page in Juniper Secure Access (SA) with IVE OS before 7.1r13, 7.2.x before 7.2r7, and 7.3.x before 7.3r2 allows remote attackers to inject arbitrary web script or HTML via the WWHSearchWordsText parameter.)
Original documentdocumentAnil Pazvant, Juniper Secure Access XSS Vulnerability (29.07.2013)

About | Terms of use | Privacy Policy
© SecurityVulns, 3APA3A, Vladimir Dubrovin
Nizhny Novgorod