Multiple vulnerabilities have been discovered in Symantec Endpoint Protection Manager, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks, according to Secunia.
1. Input appended to the URL after /console/apps/sepm is not properly sanitised before being returned to the user. This can be exploited to execute arbitrary HTML and script
No comments:
Post a Comment