Summary
The remote web proxy suffers from multiple flaws.
Description :
The remote host is running the web proxy WebWasher.
According to its banner, the installed version of WebWasher is prone to multiple cross-site scripting flaws. Successful exploitation of these issues may allow an attacker to execute malicious script code in a user's browser within the context of the affected website.
Solution
Upgrade to WebWasher CSM 4.4.1 Build 1613 or later.
References
Severity
Classification
-
CVSS Base Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N
Related Vulnerabilities
- Apache OFBiz Multiple Cross Site Scripting Vulnerabilities
- AjaXplorer Remote Command Injection and Local File Disclosure Vulnerabilities
- Apache mod_proxy_ajp Information Disclosure Vulnerability
- AeroMail Cross Site Request Forgery, HTML Injection and Cross Site Scripting Vulnerabilities
- Apache Tiles Multiple XSS Vulnerability