Cross-site scripting (XSS) vulnerability in cgi-bin/cgix/help in McAfee Unified Threat Management (UTM) Firewall (formerly SnapGear) firmware 3.0.0 up to and including 4.0.6 allows remote malicious users to inject arbitrary web script or HTML via the page parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
mcafee unified_threat_management_firewall_firmware 3.0.0 |
||
mcafee unified_threat_management_firewall_firmware 3.1.5 |
||
mcafee unified_threat_management_firewall_firmware 4.0.6 |