CVE-2014-3432
Cross-site scripting (XSS) vulnerability in the management console in Symantec Data Insight 3.x and 4.x before 4.5 allows remote attackers to inject arbitrary web script or HTML via an unspecified form field.
View on NVDSeverity
N/A
EPSS
Probability of exploitation (next 30 days): 0.0061 (0.6%)
Percentile: 69.7%
EPSS: 2026-05-06
Affects
symantec:data_insightTechnical description
Cross-site scripting (XSS) vulnerability in the management console in Symantec Data Insight 3.x and 4.x before 4.5 allows remote attackers to inject arbitrary web script or HTML via an unspecified form field.
Published: 6/27/2014, 2:55:05 PM
Last modified: 5/6/2026, 10:30:45 PM
References
- http://secunia.com/advisories/59538
- http://secunia.com/advisories/59561
- http://www.securityfocus.com/bid/68160
- http://www.securitytracker.com/id/1030472
- http://www.symantec.com/security_response/securityupdates/detail.jsp?fid=security_advisory&pvid=security_advisory&year=&suid=20140625_00
- http://secunia.com/advisories/59538
- http://secunia.com/advisories/59561
- http://www.securityfocus.com/bid/68160