Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway before 8.305 allows remote attackers to inject arbitrary web script or HTML via the "Comment (optional)" field.
AV:N/AC:M/Au:N/C:N/I:P/A:NAstaro Security Gateway
HWAstarowszystkie wersjeAstaro Security Gateway Software
APPAstaro≤ 8.3Sophos Unified Threat Management
HWSophos110120220320425525625Sophos Unified Threat Management Software
APPSophos≤ 8.3
Related vulnerabilities
A remote code execution vulnerability exists in the WebAdmin of Sophos SG UTM before v9.705 MR5, v9.607 MR7, a...
A post-auth SQL injection vulnerability in the Mail Manager potentially allows an authenticated attacker to ex...
Multiple stack-based buffer overflows in the (1) send_dg and (2) send_vc functions in the libresolv library in...
The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, an...
Memory leak in the TCP stack in the kernel in Sophos UTM before 9.109 allows remote attackers to cause a denia...