The ISAPI Filter plug-in in Websense Enterprise, Websense Web Security, and Websense Web Filter 6.3.3 and earlier, when used in conjunction with a Microsoft ISA or Microsoft Forefront TMG server, allows remote attackers to bypass intended filtering and monitoring activities for web traffic via an HTTP Via header.
Max CVSS
4.3
EPSS Score
0.19%
Published
2012-08-23
Updated
2012-08-23
Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequence to a URL.
Max CVSS
3.7
EPSS Score
0.04%
Published
2006-04-26
Updated
2018-10-18
2 vulnerabilities found