Lucene search
PRIOn knowledge basePRION:CVE-2016-2058HistoryApr 13, 2016 - 4:59 p.m.
Cross site scripting
2016-04-1316:59:00
PRIOn knowledge base
www.prio-n.com
11
Multiple cross-site scripting (XSS) vulnerabilities in Xymon 4.1.x, 4.2.x, and 4.3.x before 4.3.25 allow (1) remote Xymon clients to inject arbitrary web script or HTML via a status-message, which is not properly handled in the “detailed status” page, or (2) remote authenticated users to inject arbitrary web script or HTML via an acknowledgement message, which is not properly handled in the “status” page.
Related
debiancve
debiancve
CVE-2016-2058
2016-04-13 16:59:08
cve
cve
CVE-2016-2058
2016-04-13 16:59:08
ubuntucve
ubuntucve
CVE-2016-2058
2016-04-13 00:00:00
cvelist
cvelist
CVE-2016-2058
2016-04-13 16:00:00
nvd
nvd
CVE-2016-2058
2016-04-13 16:59:08
openvas
openvas
Debian: Security Advisory (DLA-488-1)
2023-03-08 00:00:00
Debian Security Advisory DSA 3495-1 (xymon - security update)
2016-03-08 00:00:00
Debian: Security Advisory (DSA-3495-1)
2016-03-08 00:00:00
debian
debian
[SECURITY] [DLA 488-1] xymon security update
2016-05-25 17:10:22
[SECURITY] [DSA 3495-1] xymon security update
2016-02-29 10:15:37
[SECURITY] [DSA 3495-1] xymon security update
2016-02-29 10:15:37
nessus
nessus
Debian DLA-488-1 : xymon security update
2016-05-26 00:00:00
FreeBSD : xymon-server -- multiple vulnerabilities (1cecd5e0-c372-11e5-96d6-14dae9d210b8)
2016-02-10 00:00:00
Debian DSA-3495-1 : xymon - security update
2016-03-01 00:00:00
osv
osv
xymon - security update
2016-05-25 00:00:00
xymon - security update
2016-02-29 00:00:00
packetstorm
packetstorm
Xymon 4.3.x Buffer Overflow / Code Execution / Information Disclosure
2016-02-15 00:00:00
freebsd
freebsd
xymon-server -- multiple vulnerabilities
2016-01-19 00:00:00
mageia
mageia
Updated xymon packages fix security vulnerabilities
2016-05-18 23:14:22