Multiple cross-site scripting (XSS) vulnerabilities in PHP scripts in the management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors, as demonstrated an attack against admin_messages.php.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
symantec web gateway |