VYPR
Unrated severityNVD Advisory· Published Sep 10, 2012· Updated Jun 16, 2026

CVE-2012-4889

CVE-2012-4889

Description

Multiple cross-site scripting (XSS) vulnerabilities in ManageEngine Firewall Analyzer 7.2 allow remote attackers to inject arbitrary web script or HTML via the (1) subTab or (2) tab parameter to createAnomaly.do; (3) url, (4) subTab, or (5) tab parameter to mindex.do; (6) tab parameter to index2.do; or (7) port parameter to syslogViewer.do.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • cpe:2.3:a:manageengine:firewall_analyzer:7.2:*:*:*:*:*:*:*+ 1 more
    • cpe:2.3:a:manageengine:firewall_analyzer:7.2:*:*:*:*:*:*:*
    • (no CPE)range: =7.2

Patches

Vulnerability mechanics

References

9

News mentions

0

No linked articles in our index yet.