Syneto.Unified.Threat.Management.Index.php.XSS
Description
This indicates an attack attempt to exploit a Cross Site Scripting vulnerability in Syneto Unified Threat Management.
The vulnerability is caused by insufficient sanitizing of user supplied inputs that is being passed to "index.php". A remote attacker can exploit this to execute arbitrary script code in context of the affected site
Affected Products
Syneto Unified Threat Management 1.4.2
Syneto Unified Threat Management 1.3.3 Community Edition
Impact
Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.
Recommended Actions
Currently we are not aware of any vendor supplied patch for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |