Bluecoat: >> Reporter >> 7.1.1 Security Vulnerabilities
templates.admin.users.user_form_processing in Blue Coat Reporter before 7.1.2 allows authenticated users to gain administrator privileges via an HTTP POST that sets volatile.user.administrator to true.
CVSS Score
4.6
EPSS Score
0.009
Published
2005-05-24
Unknown vulnerability in Blue Coat Reporter before 7.1.2 allows remote unauthenticated attackers to add a license.
CVSS Score
7.5
EPSS Score
0.038
Published
2005-05-24
Multiple cross-site scripting (XSS) vulnerabilities in Blue Coat Reporter before 7.1.2 allow remote attackers to inject arbitrary web script or HTML via (1) the username in an Add User window or (2) the license key (volatile.license_to_add parameter) in the Licensing page.
CVSS Score
4.3
EPSS Score
0.005
Published
2005-05-24