Multiple Cross-Site Scripting Vulnerabilities in Sophos Email Security Appliances
CVE-2008-0838

Currently unrated

Key Information:

Vendor
Sophos
Vendor
CVE Published:
20 February 2008

Summary

The Sophos Email Security Appliance contains multiple cross-site scripting vulnerabilities within its web administration interface. These flaws allow attackers to inject arbitrary web scripts or HTML into the login page through manipulated parameters. This may enable unauthorized access and compromise the integrity of user data and interactions with the appliance.

References

EPSS Score

13% chance of being exploited in the next 30 days.

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.