Published: 14/05/2010 Updated: 17/08/2017
CVSS v2 Base Score: 4.3 | Impact Score: 2.9 | Exploitability Score: 8.6
VMScore: 435
Vector: AV:N/AC:M/Au:N/C:N/I:P/A:N

Vulnerability Summary

Cross-site scripting (XSS) vulnerability in esp/editUser.esp in the Palo Alto Networks firewall 3.0.x prior to 3.0.9 and 3.1.x prior to 3.1.1 allows remote malicious users to inject arbitrary web script or HTML via the role parameter.


Palo Alto Network Vulnerability - Cross-Site Scripting (XSS) ------------------------------ Class: Cross-Site Scripting (XSS) Vulnerability *CVE: CVE-2010-0475 * *Remote: Yes Local: Yes Published: May 11, 2010 08:30AM * Timeline:Submission to MITRE: 1/18/2010 Vendor Contact: 2/18/2010 Vendor Response: 2/18/2010 Patch Available: 5/2010 Patched in m ...

Mailing Lists

Palo Alto Network suffers from a cross site scripting vulnerability ...