CVE-2014-2844

Cross-site scripting (XSS) vulnerability in F-Secure Messaging Secure Gateway 7.5.0 before Patch 1862 allows remote authenticated administrators to inject arbitrary web script or HTML via the new parameter in the SysUser module to admin.
Configurations

Configuration 1 (hide)

cpe:2.3:a:f-secure:secure_messaging_secure_gateway:7.5.0:*:*:*:*:*:*:*

History

No history.

Information

Published : 2014-04-18 14:55

Updated : 2024-02-28 12:20


NVD link : CVE-2014-2844

Mitre link : CVE-2014-2844

CVE.ORG link : CVE-2014-2844


JSON object : View

Products Affected

f-secure

  • secure_messaging_secure_gateway
CWE
CWE-79

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')