Arbitrary Script Injection in Symantec Web Gateway Management Console

Arbitrary Script Injection in Symantec Web Gateway Management Console

CVE-2014-1652 · LOW Severity

AV:A/AC:M/AU:S/C:N/I:P/A:N

Multiple cross-site scripting (XSS) vulnerabilities in the management console in Symantec Web Gateway (SWG) before 5.2 allow remote authenticated users to inject arbitrary web script or HTML via unspecified report parameters.

Learn more about our Web App Pen Testing.