Multiple cross-site scripting (XSS) vulnerabilities in Alcatel OmniVista 4760 R4.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via (1) the action parameter to php-bin/Webclient.php or (2) the Langue parameter to the default URI.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
alcatel-lucent omnivista |