CVE-2015-1389

Aruba Networks ClearPass Policy Manager <6.4.5 - XSS

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-1389. PoCs published by Cristiano Maruti.

AI-analyzed exploit summary This is a detailed writeup describing a stored XSS vulnerability in Aruba ClearPass Policy Manager 6.4. The exploit involves injecting malicious JavaScript via the login form, which is later executed when an admin reviews access logs.

Description

Cross-site scripting (XSS) vulnerability in Aruba Networks ClearPass Policy Manager (CPPM) before 6.4.5 allows remote attackers to inject arbitrary web script or HTML via the username parameter to tips/tipsLoginSubmit.action.

Exploits (1)

exploitdb WRITEUP
by Cristiano Maruti · textwebappshardware
https://www.exploit-db.com/exploits/37172

This is a detailed writeup describing a stored XSS vulnerability in Aruba ClearPass Policy Manager 6.4. The exploit involves injecting malicious JavaScript via the login form, which is later executed when an admin reviews access logs.

Classification
Writeup 100%
Attack Type
Xss
Complexity
Trivial
Reliability
Reliable
Target: Aruba ClearPass Policy Manager 6.4
No auth needed
Prerequisites: Access to the login page of the target application
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (5)

Core 5

Scores

EPSS 0.0680
EPSS Percentile 93.2%

Details

CWE
CWE-79
Status published
Products (1)
arubanetworks/clearpass_policy_manager < 6.4.4
Published May 28, 2015
Tracked Since Feb 18, 2026