Cross-site scripting (XSS) vulnerability in download_plugin.php3 in F5 Firepass 4100 SSL VPN 5.4 up to and including 5.5.2 and 6.0 up to and including 6.0.1 allows remote malicious users to inject arbitrary web script or HTML via the backurl parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
f5 firepass 4100 5.4.4 |
||
f5 firepass 4100 5.4.5 |
||
f5 firepass 4100 6.0 |
||
f5 firepass 4100 6.0.1 |
||
f5 firepass 4100 5.4 |
||
f5 firepass 4100 5.4.8 |
||
f5 firepass 4100 5.4.9 |
||
f5 firepass 4100 5.4.6 |
||
f5 firepass 4100 5.4.7 |
||
f5 firepass 4100 5.4.1 |
||
f5 firepass 4100 5.4.2 |
||
f5 firepass 4100 5.4.3 |
||
f5 firepass 4100 5.5.0 |
||
f5 firepass 4100 5.5.1 |