Cross-site scripting (XSS) vulnerability in CA SiteMinder 12.0 through 12.51, and SiteMinder 6 Web Agents, allows remote attackers to inject arbitrary web script or HTML via vectors involving a " (double quote) character.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
|
History
07 Nov 2023, 02:16
Type | Values Removed | Values Added |
---|---|---|
References |
|
|
12 Apr 2021, 14:17
Type | Values Removed | Values Added |
---|---|---|
CPE | cpe:2.3:a:ca:siteminder:12.0:sp2:*:*:*:*:*:* cpe:2.3:a:ca:siteminder:12.0:sp3:*:*:*:*:*:* cpe:2.3:a:ca:siteminder:12.0:sp1:*:*:*:*:*:* cpe:2.3:a:ca:siteminder:12.5:*:*:*:*:*:*:* |
cpe:2.3:a:broadcom:siteminder:12.51:*:*:*:*:*:*:* cpe:2.3:a:broadcom:siteminder:12.0:sp1:*:*:*:*:*:* cpe:2.3:a:broadcom:siteminder:12.0:sp3:*:*:*:*:*:* cpe:2.3:a:broadcom:siteminder:12.5:*:*:*:*:*:*:* cpe:2.3:a:broadcom:siteminder:12.0:sp2:*:*:*:*:*:* |
Information
Published : 2013-10-29 03:42
Updated : 2023-12-10 11:16
NVD link : CVE-2013-5968
Mitre link : CVE-2013-5968
CVE.ORG link : CVE-2013-5968
JSON object : View
Products Affected
ca
- web_agents
broadcom
- siteminder
CWE
CWE-79
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')