Cross-Site-Scripting (XSS) vulnerabilities in F5 WebSafe Dashboard 3.9.5 and earlier, aka F5 WebSafe Alert Server, allow privileged authenticated users to inject arbitrary web script or HTML when creating a new user, account or signature.
References
Link | Resource |
---|---|
https://support.f5.com/csp/article/K55922302 | Vendor Advisory |
Configurations
Information
Published : 2019-07-01 09:15
Updated : 2019-07-02 07:08
NVD link : CVE-2016-5236
Mitre link : CVE-2016-5236
JSON object : View
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
Products Affected
f5
- websafe_alert_server