Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CVE-2019-12754

EPSS 0.40% · P61
Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2019-12754

Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
Symantec My VIP portal, previous version which has already been auto updated, was susceptible to a cross-site scripting (XSS) exploit, which is a type of issue that can enable attackers to inject client-side scripts into web pages viewed by other users or potentially bypass access controls such as the same-origin policy.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
Symantec My VIP portal 跨站脚本漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Symantec My VIP是美国赛门铁克(Symantec)公司的一款用于管理双因素身份验证的门户网站。 Symantec My VIP中存在跨站脚本漏洞。攻击者可利用该漏洞将client-side脚本注入网页。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)

Affected Products

VendorProductAffected VersionsCPESubscribe
Symantec CorporationMy VIP Portal Previous My VIP portal -

II. Public POCs for CVE-2019-12754

#POC DescriptionSource LinkShenlong Link
AI-Generated POCPremium

No public POC found.

Login to generate AI POC

III. Intelligence Information for CVE-2019-12754

登录查看更多情报信息。

Same Patch Batch · Symantec Corporation · 2019-08-29 · 5 CVEs total

CVE-2018-18370Symantec Advanced Secure Gateway和ProxySG 跨站脚本漏洞
CVE-2018-18371Symantec Advanced Secure Gateway和ProxySG 加密问题漏洞
CVE-2019-12753Symantec Reporter web UI 信息泄露漏洞
CVE-2019-9697Symantec Management Center 信息泄露漏洞

IV. Related Vulnerabilities

Same vendor: Symantec Corporation

V. Comments for CVE-2019-12754

No comments yet

Leave a comment