CVSS: 4.3EPSS: 0%CPEs: 2EXPL: 0CVE-2009-4608
https://notcve.org/view.php?id=CVE-2009-4608
Cross-site scripting (XSS) vulnerability in Canon IT Solutions Inc. ACCESSGUARDIAN 3.0.14 and earlier, and 3.5.6 and earlier, allows remote attackers to inject arbitrary web script or HTML via unspecified vectors related to authentication. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en Canon IT Solutions Inc. ACCESSGUARDIAN v3.0.14 y anteriores y v3.5.6 y anteriores, permite a atacantes remotos inyectar secuencias arbitrarias de comandos web o HTML a través de vectores desconocidos relacionados con la autenticación. • http://canon-its.jp/guardian/topics/200910ag.html http://jvn.jp/en/jp/JVN33822756/index.html http://jvndb.jvn.jp/en/contents/2009/JVNDB-2009-000066.html http://osvdb.org/59058 http://secunia.com/advisories/37045 http://www.vupen.com/english/advisories/2009/2973 https://exchange.xforce.ibmcloud.com/vulnerabilities/53822 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •