XSS in Algosec Firewall_analyzer
CVE-2013-7318
Cross-site scripting (XSS) vulnerability in BusinessFlow/login in AlgoSec Firewall Analyzer 6.4 allows remote attackers to inject arbitrary web script or HTML via the message parameter.
Vulnerability class: XSS (Cross-Site Scripting)
EPSS: 0.010 (57.9th percentile) — read the EPSS interpretation.
Affected products
- Algosec Firewall_analyzer — versions 6.4
- N/a — versions n/a
Weakness classification (CWE)
References
- cve@mitre.org (Exploit, x_refsource_MISC)
- cve@mitre.org (x_refsource_OSVDB, vdb-entry)