Security for everyone

CVE-2012-4889 Scanner

Detects 'Cross-Site Scripting (XSS)' vulnerability in ManageEngine Firewall Analyzer affects v. 7.2.


Short Info




Single Scan

Can be used by

Asset Owner

Estimated Time

10 sec

Scan only one


Parent Category

CVE-2012-4889 Scanner Detail

ManageEngine Firewall Analyzer is a software tool designed for network security administrators to monitor firewalls, analyze security events, and generate compliance reports. It provides real-time log analysis and advanced network analytics to ensure the smooth functioning of an organization's security infrastructure. The tool is widely used in businesses, educational institutions, and government agencies worldwide to secure their digital assets.

One of the known vulnerabilities in ManageEngine Firewall Analyzer is the CVE-2012-4889 vulnerability. This vulnerability allows remote attackers to inject arbitrary web scripts or HTML codes into the application through various parameters. These parameters include "subTab," "tab," "url," and "port" parameters in different functions of the tool. The vulnerability can be exploited by hackers to steal sensitive information, such as usernames and passwords, from the targeted system.

When exploited, the CVE-2012-4889 vulnerability can lead to several consequences for an organization. Remote attackers can gain unauthorized access to the application and execute arbitrary code on the targeted system. They can also use the injected scripts to redirect users to malicious websites, which can lead to further exploitation of the system. The vulnerability can compromise the confidentiality, integrity, and availability of an organization's data and systems.

The pro features of the platform provide a comprehensive solution to vulnerability management. The platform enables organizations to discover, assess, and prioritize their vulnerabilities in real-time. It offers user-friendly dashboards, reports, and notification mechanisms to ensure that administrators can easily track and mitigate vulnerabilities on their networks. By leveraging this platform, organizations can ensure the security of their digital assets and prevent cyber attacks.



cyber security services for everyone one. Free security tools, continuous vulnerability scanning and many more.
Try it yourself,
control security posture