XSS in Algosec Firewall_analyzer
CVE-2013-5092
Cross-site scripting (XSS) vulnerability in afa/php/Login.php in AlgoSec Firewall Analyzer 6.1-b86 allows remote attackers to inject arbitrary web script or HTML via the PATH_INFO.
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.032 (86.8th percentile) — read the EPSS interpretation.
Affected products
- Algosec Firewall_analyzer — versions 6.1
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (vdb-entry, x_refsource_BID)
- cve@mitre.org (Exploit, x_refsource_MISC)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)
- cve@mitre.org (vdb-entry, x_refsource_XF)