CVE-2023-6452
- EPSS 0.13%
- Published 22.08.2024 16:15:07
- Last modified 23.08.2024 16:18:28
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Web Security (Transaction Viewer) allows Stored XSS. The Forcepoint Web Security portal allows administrators to generate detailed...
CVE-2023-2080
- EPSS 0.2%
- Published 15.06.2023 23:15:09
- Last modified 21.11.2024 07:57:53
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud allows Blind SQL Injection.
CVE-2023-26290
- EPSS 0.44%
- Published 29.03.2023 17:15:07
- Last modified 21.11.2024 07:51:04
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_reset_request.mhtml modules), Forcepoint W...
CVE-2023-26291
- EPSS 0.44%
- Published 29.03.2023 17:15:07
- Last modified 21.11.2024 07:51:04
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_form.mhtml modules), Forcepoint Web Securi...
CVE-2023-26292
- EPSS 0.44%
- Published 29.03.2023 17:15:07
- Last modified 21.11.2024 07:51:04
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Forcepoint Cloud Security Gateway (CSG) Portal on Web Cloud Security Gateway, Email Security Cloud (login_submit.mhtml modules), Forcepoint Web Secu...
CVE-2019-6146
- EPSS 1.98%
- Published 22.01.2020 17:15:11
- Last modified 21.11.2024 04:46:01
It has been reported that cross-site scripting (XSS) is possible in Forcepoint Web Security, version 8.x, via host header injection. CVSSv3.0: 5.3 (Medium) (/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N)