Exploitation Summary
EIP tracks 1 public exploit for CVE-2012-2984. PoCs published by Steven Sim Kok Leong.
AI-analyzed exploit summary This exploit demonstrates multiple XSS vulnerabilities in Websense Content Gateway by injecting malicious scripts via the 'menu' parameter in the URL. The PoC shows how an attacker can execute arbitrary JavaScript in the context of the affected site.
Description
Multiple cross-site scripting (XSS) vulnerabilities in monitor/m_overview.ink in Websense Content Gateway before 7.7.3 allow remote attackers to inject arbitrary web script or HTML via the (1) menu or (2) item parameter.
Exploits (1)
This exploit demonstrates multiple XSS vulnerabilities in Websense Content Gateway by injecting malicious scripts via the 'menu' parameter in the URL. The PoC shows how an attacker can execute arbitrary JavaScript in the context of the affected site.