Podatność CVE-2012-3238

Podatność CVE-2012-3238

Publikacja: 2012-07-09 Modyfikacja: 2012-07-10

Opis:

	Tytuł	Autor	Data
Low	Astaro Security Gateway <= v8.304 Persistent Cross-Site Scripting	Inshell Security	11.06.2012

Typ:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

Ogólna skala CVSS	Znaczenie	Łatwość wykorzystania
4.3/10	2.9/10	8.6/10

Affected software
Sophos -> Unified threat management software
Sophos -> Unified threat management
Astaro -> Security gateway software
Astaro -> Security gateway

http://www.astaro.com/en-uk/blog/up2date/8305

http://security.inshell.net/advisory/27

http://archives.neohapsis.com/archives/fulldisclosure/2012-06/0206.html