Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
quest policy authority for unified communications 8.1.2.200 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2020-35203
Reflected XSS in Web Compliance Manager in Quest Policy Authority version 8.1.2.200 allows malicious users to inject malicious code into the browser via a specially crafted link to the initFile.jsp file via the msg parameter. NOTE: This vulnerability only affects products that ar...
Quest Policy Authority For Unified Communications 8.1.2.200
4.3
CVSSv2
CVE-2020-35719
Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the /WebCM/Applications/Search/index.jsp file via the added parameter. NOTE: This vulnerability only affects products that are...
Quest Policy Authority For Unified Communications 8.1.2.200
3.5
CVSSv2
CVE-2020-35721
Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the BrowseAssets.do file via the title parameter. NOTE: This vulnerability only affects products that are no longer supported ...
Quest Policy Authority For Unified Communications 8.1.2.200
3.5
CVSSv2
CVE-2020-35724
Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the Error.jsp file via the err parameter (or indirectly via the cpr, tcp, or abs parameter). NOTE: This vulnerability only aff...
Quest Policy Authority For Unified Communications 8.1.2.200
4.3
CVSSv2
CVE-2020-35725
Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the /WebCM/index.jsp file via the msg parameter. NOTE: This vulnerability only affects products that are no longer supported b...
Quest Policy Authority For Unified Communications 8.1.2.200
4.3
CVSSv2
CVE-2020-35204
Reflected XSS in Quest Policy Authority version 8.1.2.200 allows malicious users to inject malicious code into the browser via a specially crafted link to the PolicyAuthority/Common/FolderControl.jsp file via the unqID parameter. NOTE: This vulnerability only affects products tha...
Quest Policy Authority For Unified Communications 8.1.2.200
7.5
CVSSv2
CVE-2020-35205
Server Side Request Forgery (SSRF) in Web Compliance Manager in Quest Policy Authority version 8.1.2.200 allows malicious users to scan internal ports and make outbound connections via the initFile.jsp file. NOTE: This vulnerability only affects products that are no longer suppor...
Quest Policy Authority For Unified Communications 8.1.2.200
4.3
CVSSv2
CVE-2020-35206
Reflected XSS in Web Compliance Manager in Quest Policy Authority version 8.1.2.200 allows malicious users to inject malicious code into the browser via a specially crafted link to the cConn.jsp file via the ur parameter. NOTE: This vulnerability only affects products that are no...
Quest Policy Authority For Unified Communications 8.1.2.200
3.5
CVSSv2
CVE-2020-35720
Stored XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to store malicious code in multiple fields (first name, last name, and logon name) when creating or modifying a user via the submitUser.jsp file. NOTE: This vulnerability only affects products that are n...
Quest Policy Authority For Unified Communications 8.1.2.200
3.5
CVSSv2
CVE-2020-35727
Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the BrowseDirs.do file via the title parameter. NOTE: This vulnerability only affects products that are no longer supported by...
Quest Policy Authority For Unified Communications 8.1.2.200
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »