Multiple cross-site scripting (XSS) vulnerabilities in Bloxx Web Filtering before 5.0.14 allow (1) remote attackers to inject arbitrary web script or HTML via web traffic that is examined within the Bloxx Reports component, and allow (2) remote authenticated administrators to inject arbitrary web script or HTML via vectors involving administrative menu functions.
References
Link | Resource |
---|---|
http://www.kb.cert.org/vuls/id/722963 | US Government Resource |
http://www.kb.cert.org/vuls/id/MAPG-8R9LBY | |
http://www.securityfocus.com/bid/53715 |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: certcc
Published: 2012-06-09T00:00:00
Updated: 2012-08-18T09:00:00
Reserved: 2012-05-09T00:00:00
Link: CVE-2012-2563
JSON object: View
NVD Information
Status : Modified
Published: 2012-06-09T00:55:01.330
Modified: 2012-08-19T03:44:21.097
Link: CVE-2012-2563
JSON object: View
Redhat Information
No data.
CWE