CVE-2007-6312

Websense Enterprise/Web Security Suite 6.3 - XSS

Title source: llm

Description

Cross-site scripting (XSS) vulnerability in the logon page in Web Reporting Tools portal in Websense Enterprise and Web Security Suite 6.3 allows remote attackers to inject arbitrary web script or HTML via the username field.

References (9)

Scores

EPSS 0.0129
EPSS Percentile 79.4%

Classification

CWE
CWE-79
Status draft

Affected Products (6)

websense/enterpise
websense/enterpise
websense/reporting_tools
websense/reporting_tools
websense/web_security_suite
websense/web_security_suite

Timeline

Published Dec 11, 2007
Tracked Since Feb 18, 2026