Cross-site scripting (XSS) vulnerability in Cyber-Ark Password Vault Web Access (PVWA) 5.0 and previous versions, 5.5 up to and including 5.5 patch 4, and 6.0 up to and including 6.0 patch 2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
cyber-ark password vault web access 5.5 |
||
cyber-ark password vault web access 6.0 |
||
cyber-ark password vault web access |
||
cyber-ark password vault web access 4.0 |