4 results (0.005 seconds)

CVSS: 5.4EPSS: 0%CPEs: 1EXPL: 0

Cross-site scripting (XSS) vulnerability in the Case Management application in EMC RSA Adaptive Authentication (On-Premise) before 6.0.2.1.SP3.P4 HF210, 7.0.x and 7.1.x before 7.1.0.0.SP0.P6 HF50, and 7.2.x before 7.2.0.0.SP0.P0 HF20 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors. Vulnerabilidad de XSS en la aplicación Case Management en EMC RSA Adaptive Authentication (On-Premise) en versiones anteriores a 6.0.2.1.SP3.P4 HF210, 7.0.x y 7.1.x en versiones anteriores a 7.1.0.0.SP0.P6 HF50 y 7.2.x en versiones anteriores a 7.2.0.0.SP0.P0 HF20 permite a usuarios remotos autenticados inyectar secuencias de comandos web o HTML arbitrarios a través de vectores no especificados. • http://seclists.org/bugtraq/2016/Sep/33 http://www.securityfocus.com/bid/93025 http://www.securitytracker.com/id/1036851 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 4.3EPSS: 0%CPEs: 12EXPL: 0

Multiple cross-site scripting (XSS) vulnerabilities in EMC RSA Adaptive Authentication On-Premise (AAOP) before 7.0 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en EMC RSA Adaptive Authentication On-Premise (AAOP) antes de v7.0, permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://archives.neohapsis.com/archives/bugtraq/2012-11/0096.html http://osvdb.org/87876 http://packetstormsecurity.com/files/118381/RSA-Adaptive-Authentication-On-Premise-6.x-XSS.html http://secunia.com/advisories/51394 http://www.securityfocus.com/bid/56699 http://www.securitytracker.com/id?1027811 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •

CVSS: 2.9EPSS: 0%CPEs: 11EXPL: 0

Unspecified vulnerability in EMC RSA Adaptive Authentication On-Premise (AAOP) 6.0.2.1 before SP3 P3 allows remote attackers to obtain sensitive information via unknown vectors. Vulnerabilidad no especificada en EMC RSA Adaptive Authentication On-Premise (AAOP) v6.0.2.1 antes de SP3 P3, permite a atacantes remotos obtener información sensible a través de vectores desconocidos • http://archives.neohapsis.com/archives/bugtraq/2012-10/0036.html http://www.securityfocus.com/bid/55842 •

CVSS: 4.3EPSS: 0%CPEs: 6EXPL: 0

Cross-site scripting (XSS) vulnerability in an unspecified Shockwave Flash file in EMC RSA Adaptive Authentication On-Premise (AAOP) 2.x, 5.7.x, and 6.x allows remote attackers to inject arbitrary web script or HTML via unknown vectors. Vulnerabilidad de ejecución de comando en sitios cruzados (XSS) en un archivo Shockwave Flash no especificado en EMC RSA Adaptive Authentication On-Premise (AAOP) v2.x, v5.7.x, y v6.x permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores desconocidos. • http://secunia.com/advisories/44236 http://securityreason.com/securityalert/8215 http://securitytracker.com/id?1025382 http://www.securityfocus.com/archive/1/517534/100/0/threaded http://www.securityfocus.com/bid/47408 http://www.vupen.com/english/advisories/2011/1026 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •