| | | | |
|---|
| EllisLab | EpressionEngine 2.2.2 & CodeIgniter 2.0.3 | xss_clean Filter Bypass - leading to Cross-Site Scripting (XSS) | CVE-2011-4025 | MVSA-11-013 |
| Google | Google Message Security SaaS (powered by Postini) | Multiple Cross-Site Request Forgery (CSRF) | | MVSA-11-011 |
| Google | Google Message Security SaaS (powered by Postini) | Insecure Direct Object Reference | | MVSA-11-010 |
| Astaro | Security Gateway Appliance (7.3x, 7.4x, ...) | Multiple Persistent & Reflected XSS | CVE-2009-0045 | MVSA-11-009 |
| Astaro | Security Gateway Appliance (7.3x, 7.4x, ...) | SQL Injection | CVE-2009-0044 | MVSA-11-008 |
| Apache Software Foundation & OpenSymphony | Struts 2 Framework, XWork, WebWork | Java Class Path Information Disclosure | CVE-2011-2088 | MVSA-11-007 |
| Apache Software Foundation | Struts 2 Framework | Multiple Reflected XSS | CVE-2011-1772 | MVSA-11-006 |
| Barracuda Networks | Email Security Service SaaS | Multiple Persistent & Reflected XSS in Barracuda Console Center | | MVSA-10-014 |
| Barracuda Networks | Email Security Service SaaS | Multiple Persistent & Reflected XSS in Admin Console | | MVSA-10-011 |
| IBM | Proventia Network Mail Security System | CRLF Injection | CVE-2010-0155 | MVSA-10-009 |
| IBM | Proventia Network Mail Security System | Insecure Direct Object Reference | CVE-2010-0154 | MVSA-10-008 |
| IBM | Proventia Network Mail Security System | Multiple Persistent & Reflected XSS | CVE-2010-0152 | MVSA-10-007 |
| IBM | Proventia Network Mail Security System | XSRF | CVE-2010-0153 | MVSA-10-006 |
| Google | Google Message Security SaaS (powered by Postini) | Improper Error Handling | N/A | MVSA-10-003 |
| Google | Google Message Security SaaS (powered by Postini) | Multiple Persistent & Reflected XSS | N/A | MVSA-10-002 |
| Google | Google Message Security SaaS (powered by Postini) | SQL Injection | N/A | MVSA-10-001 |
| Symantec | Mail Security Appliance, BrightMail Gateway Appliance, BrightMail Appliance - Control Center | Multiple Reflected XSS | CVE-2009-0063 | MVSA-09-002 |
| Symantec | Mail Security Appliance, BrightMail Gateway Appliance, BrightMail Appliance - Control Center | Escalation of Privileges | CVE-2009-0064 | MVSA-09-001 |
| Barracuda Networks | Barracuda Spam Firewall | SQL Injection | CVE-2008-1094 | MVSA-08-003 |
| Barracuda Networks | Barracuda Spam Firewall, Message Archiver, IM Firewall, Web Filter, Load Balancer | Multiple Persistent & Reflected XSS | CVE-2008-0971 | MVSA-08-002 |
| Marshal | MailMarshal Spam Quarantine Management | Multiple Persistent XSS | CVE-2008-2831 | MVSA-08-001 |