Multiple cross-site scripting (XSS) vulnerabilities in Blue Coat Reporter prior to 7.1.2 allow remote malicious users to inject arbitrary web script or HTML via (1) the username in an Add User window or (2) the license key (volatile.license_to_add parameter) in the Licensing page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
bluecoat reporter |