quest policy authority for unified communications 8.1.2.200 vulnerabilities and exploits

(subscribe to this query)

4.3

CVSSv2

Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the /WebCM/Applications/Search/index.jsp file via the added parameter. NOTE: This vulnerability only affects products that are...

Quest Policy Authority For Unified Communications 8.1.2.200

3.5

CVSSv2

Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the ReportPreview.do file via the referer parameter. NOTE: This vulnerability only affects products that are no longer support...

Quest Policy Authority For Unified Communications 8.1.2.200

4.3

CVSSv2

Reflected XSS in Quest Policy Authority version 8.1.2.200 allows malicious users to inject malicious code into the browser via a specially crafted link to the PolicyAuthority/Common/FolderControl.jsp file via the unqID parameter. NOTE: This vulnerability only affects products tha...

Quest Policy Authority For Unified Communications 8.1.2.200

7.5

CVSSv2

Server Side Request Forgery (SSRF) in Web Compliance Manager in Quest Policy Authority version 8.1.2.200 allows malicious users to scan internal ports and make outbound connections via the initFile.jsp file. NOTE: This vulnerability only affects products that are no longer suppor...

Quest Policy Authority For Unified Communications 8.1.2.200

3.5

CVSSv2

Stored XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to store malicious code in multiple fields (first name, last name, and logon name) when creating or modifying a user via the submitUser.jsp file. NOTE: This vulnerability only affects products that are n...

Quest Policy Authority For Unified Communications 8.1.2.200

3.5

CVSSv2

Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the BrowseAssets.do file via the title parameter. NOTE: This vulnerability only affects products that are no longer supported ...

Quest Policy Authority For Unified Communications 8.1.2.200

3.5

CVSSv2

Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the Error.jsp file via the err parameter (or indirectly via the cpr, tcp, or abs parameter). NOTE: This vulnerability only aff...

Quest Policy Authority For Unified Communications 8.1.2.200

4.3

CVSSv2

CSRF in Web Compliance Manager in Quest Policy Authority 8.1.2.200 allows remote malicious users to force user modification/creation via a specially crafted link to the submitUser.jsp file. NOTE: This vulnerability only affects products that are no longer supported by the maintai...

Quest Policy Authority For Unified Communications 8.1.2.200

4.3

CVSSv2

Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the /WebCM/index.jsp file via the msg parameter. NOTE: This vulnerability only affects products that are no longer supported b...

Quest Policy Authority For Unified Communications 8.1.2.200

4.3

CVSSv2

Reflected XSS in Quest Policy Authority 8.1.2.200 allows remote malicious users to inject malicious code into the browser via a specially crafted link to the /WebCM/Applications/Reports/index.jsp file via the by parameter. NOTE: This vulnerability only affects products that are n...

Quest Policy Authority For Unified Communications 8.1.2.200

Get Started

1 2 NEXT »

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook