Vulnerabilities > Silver Peak > VX > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2014-07-28 | CVE-2014-2975 | Cross-Site Scripting vulnerability in Silver-Peak VX 6.2.2.047968/6.2.4 Cross-site scripting (XSS) vulnerability in php/user_account.php in Silver Peak VX before 6.2.4 allows remote attackers to inject arbitrary web script or HTML via the user_id parameter. | 4.3 |
| 2014-07-28 | CVE-2014-2974 | Cross-Site Request Forgery (CSRF) vulnerability in Silver-Peak VX 6.2.2.047968/6.2.4 Cross-site request forgery (CSRF) vulnerability in php/user_account.php in Silver Peak VX through 6.2.4 allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts. | 6.8 |