CVE-2015-0698

Multiple cross-site scripting (XSS) vulnerabilities in filter search forms in admin web pages on Cisco Web Security Appliance (WSA) devices with software 8.5.0-497 allow remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCut39213.

Severity	MEDIUM
CVSS	4.3
CWE	CWE-79
KEV
Published	11 years ago
Modified	1 week ago

Related Products

Product	Advisory
Cisco Web Security Appliance (WSA)	Cisco-SA-20150414-CVE-2015-0698
Cisco Secure Web Appliance	Cisco-SA-20150414-CVE-2015-0698