CVE-2010-0703 – PortWise SSL VPN 4.6 - 'reloadFrame' Cross-Site Scripting
https://notcve.org/view.php?id=CVE-2010-0703
Cross-site scripting (XSS) vulnerability in wa/auth in PortWise SSL VPN 4.6 allows remote attackers to inject arbitrary web script or HTML via the reloadFrame parameter. Vulnerabilidad de secuencias de comandos en sitios cruzados (XSS) en wa/auth en PortWise SSL VPN v4.6 permite a atacantes remotos inyectar secuencias arbitrarias de comandos web o HTML a través del parámetro "reloadFrame". • https://www.exploit-db.com/exploits/33653 http://osvdb.org/62482 http://packetstormsecurity.org/1002-exploits/PR09-04.txt http://secunia.com/advisories/38627 http://www.procheckup.com/vulnerability_manager/vulnerabilities/pr09-04 http://www.securityfocus.com/archive/1/509584/100/0/threaded http://www.securityfocus.com/bid/38308 https://exchange.xforce.ibmcloud.com/vulnerabilities/56420 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •