Vulnerabilities > F5 > Firepass 4100 > 5.4.9
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2008-03-05 | CVE-2007-6704 | Cross-Site Scripting vulnerability in F5 Firepass 4100 Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 through 5.5.2 and 6.0 through 6.0.1, when pre-logon sequences are enabled, allow remote attackers to inject arbitrary web script or HTML via the query string to (1) my.activation.php3 and (2) my.logon.php3. | 2.6 |
2007-11-15 | CVE-2007-5979 | Cross-Site Scripting vulnerability in F5 Firepass 4100 Cross-site scripting (XSS) vulnerability in download_plugin.php3 in F5 Firepass 4100 SSL VPN 5.4 through 5.5.2 and 6.0 through 6.0.1 allows remote attackers to inject arbitrary web script or HTML via the backurl parameter. | 4.3 |