Vulnerabilities > Pulsesecure > Virtual Traffic Manager > Low

DATE	CVE	VULNERABILITY TITLE	RISK
2018-12-20	CVE-2018-20306	Cross-site Scripting vulnerability in Pulsesecure Virtual Traffic Manager A stored cross-site scripting (XSS) vulnerability in the web administration user interface of Pulse Secure Virtual Traffic Manager may allow a remote authenticated attacker to inject web script or HTML via a crafted website and steal sensitive data and credentials. network pulsesecure CWE-79	3.5

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.