Unrated severityNVD Advisory· Published May 30, 2014· Updated Jun 17, 2026
CVE-2014-3922
CVE-2014-3922
Description
Cross-site scripting (XSS) vulnerability in Trend Micro InterScan Messaging Security Virtual Appliance 8.5.1.1516 allows remote authenticated users to inject arbitrary web script or HTML via the addWhiteListDomainStr parameter to addWhiteListDomain.imss.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2cpe:2.3:a:trendmicro:interscan_messaging_security_virtual_appliance:8.5.1.1516:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:trendmicro:interscan_messaging_security_virtual_appliance:8.5.1.1516:*:*:*:*:*:*:*
- (no CPE)range: = 8.5.1.1516
Patches
Vulnerability mechanics
References
6- seclists.org/fulldisclosure/2014/May/164nvdExploitMailing List
- vimeo.com/96757096nvdExploit
- packetstormsecurity.com/files/126847/InterScan-Messaging-Security-Virtual-Appliance-8.5.1.1516-Cross-Site-Scripting.htmlnvdThird Party Advisory
- secunia.com/advisories/58491nvdThird Party Advisory
- www.securityfocus.com/bid/67726nvdThird Party AdvisoryVDB Entry
- www.securitytracker.com/id/1030318nvdThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.