CVE Reference: CVE-2012-4889

NOTE: The text on this page is written by CVE MITRE and reflects neither the opinions of Secunia or the results of our research. All data on this page is written and maintained by CVE MITRE.

Original Page at CVE MITRE:
CVE-2012-4889

Description:
Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Firewall Analyzer 7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) subTab or (2) tab parameter to createAnomaly.do; (3) url, (4) subTab, or (5) tab parameter to mindex.do; (6) tab parameter to index2.do; or (7) port parameter to syslogViewer.do.

CVE Status:
Candidate

References:

XF
  http://xforce.iss.net/xforce/xfdb/74538

SAID
  Secunia Advisory: SA48657

OSVDB
  80872
  80873
  80874
  80875

MISC
  http://packetstormsecurity.org/files/111474/VL-437.txt
  http://www.vulnerability-lab.com/get_content.php?id=437

BID
  52841


Return to the previous page.