Cross-site scripting (XSS) vulnerability in Accellion Secure File Transfer Appliance prior to 7_0_296 allows remote malicious users to inject arbitrary web script or HTML via the username parameter, which is not properly handled when the administrator views audit logs.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
accellion secure file transfer appliance 7_0_135 |
||
accellion secure file transfer appliance 7_0_259 |
||
accellion secure file transfer appliance 7_0_178 |
||
accellion secure file transfer appliance 7_0_189 |