Multiple cross-site scripting (XSS) vulnerabilities in PHP scripts in the management console on Symantec Web Gateway (SWG) appliances with software before 5.2.2 DB 5.0.0.1277 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors, as demonstrated an attack against admin_messages.php.
References
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: symantec
Published: 2015-09-20T20:00:00
Updated: 2016-12-20T16:57:01
Reserved: 2015-07-28T00:00:00
Link: CVE-2015-5691
JSON object: View
NVD Information
Status : Modified
Published: 2015-09-20T20:59:06.243
Modified: 2016-12-22T03:00:05.447
Link: CVE-2015-5691
JSON object: View
Redhat Information
No data.
CWE