Cross-site scripting (XSS) vulnerability in the internal browser in vSphere Client in VMware vSphere 4.1 before Update 2 and 5.0 before Update 1 allows remote malicious users to inject arbitrary web script or HTML via a crafted log-file entry.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
vmware vsphere |
Vulmon