MEDIUM
Intersect Alliance
CVE published 2017-02-17
CVE-2017-5998
CVE-2017-5998 is a cross-site scripting (XSS) vulnerability in InterSect Alliance SNARE Epilog for UNIX version 1.5. According to the CVE record, a remote authenticated user can inject arbitrary web script or HTML through the str_log_name parameter during a Web Admin Portal > Log Configuration > Add action. The issue was published on 2017-02-17 and is rated CVSS 5.4 (Medium). Because the attack requires a [truncated]