Multiple cross-site scripting (XSS) vulnerabilities in the administrative user interface in IBM Lotus Protector for Mail Security 2.1, 2.5, 2.5.1, and 2.8 and IBM ISS Proventia Network Mail Security System allow remote attackers to inject arbitrary web script or HTML via the query string.
References
Advertisement
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
|
Information
Published : 2012-07-20 03:40
Updated : 2017-12-21 18:29
NVD link : CVE-2012-2955
Mitre link : CVE-2012-2955
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Advertisement
Products Affected
ibm
- proventia_network_mail_security_system
- lotus_protector_for_mail_security
- proventia_network_mail_security_system_firmware