Vulnerabilities > Symantec > Messaging Gateway > 10.7.3
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2022-12-09 | CVE-2022-25629 | Cross-site Scripting vulnerability in Symantec Messaging Gateway An authenticated user who has the privilege to add/edit annotations on the Content tab, can craft a malicious annotation that can be executed on the annotations page (Annotation Text Column). | 5.4 |
2022-12-09 | CVE-2022-25630 | Cross-site Scripting vulnerability in Symantec Messaging Gateway An authenticated user can embed malicious content with XSS into the admin group policy page. | 5.4 |