1445 matches found
CVE-2024-28832
Stored XSS in the Crash Report page in Checkmk before versions 2.3.0p7, 2.2.0p28, 2.1.0p45, and 2.0.0 EOL allows users with permission to change Global Settings to execute arbitrary scripts by injecting HTML elements into the Crash Report URL in the Global Settings...
CVE-2024-28831
Stored XSS in some confirmation pop-ups in Checkmk before versions 2.3.0p7 and 2.2.0p28 allows Checkmk users to execute arbitrary scripts by injecting HTML elements into some user input fields that are shown in a confirmation pop-up...
CVE-2024-28832
Stored XSS in the Crash Report page in Checkmk before versions 2.3.0p7, 2.2.0p28, 2.1.0p45, and 2.0.0 EOL allows users with permission to change Global Settings to execute arbitrary scripts by injecting HTML elements into the Crash Report URL in the Global Settings...
UBUNTU-CVE-2024-28832
Stored XSS in the Crash Report page in Checkmk before versions 2.3.0p7, 2.2.0p28, 2.1.0p45, and 2.0.0 EOL allows users with permission to change Global Settings to execute arbitrary scripts by injecting HTML elements into the Crash Report URL in the Global Settings...
CVE-2024-28832 XSS in Crash Report Page
Stored XSS in the Crash Report page in Checkmk before versions 2.3.0p7, 2.2.0p28, 2.1.0p45, and 2.0.0 EOL allows users with permission to change Global Settings to execute arbitrary scripts by injecting HTML elements into the Crash Report URL in the Global Settings...
CVE-2024-28832 XSS in Crash Report Page
Stored XSS in the Crash Report page in Checkmk before versions 2.3.0p7, 2.2.0p28, 2.1.0p45, and 2.0.0 EOL allows users with permission to change Global Settings to execute arbitrary scripts by injecting HTML elements into the Crash Report URL in the Global Settings...
CVE-2024-28832
CVE-2024-28832 describes a stored XSS vulnerability in the Crash Report page of Checkmk. Affected versions before 2.3.0p7, 2.2.0p28, 2.1.0p45, and 2.0.0 (EOL) allow users with permission to change Global Settings to inject HTML in the Crash Report URL, potentially executing scripts. The issue ari...
CVE-2024-28831 XSS in confirmation pop-up
Stored XSS in some confirmation pop-ups in Checkmk before versions 2.3.0p7 and 2.2.0p28 allows Checkmk users to execute arbitrary scripts by injecting HTML elements into some user input fields that are shown in a confirmation pop-up...
CVE-2024-28831
CVE-2024-28831 describes a stored XSS in Checkmk’s confirmation pop-ups prior to versions 2.3.0p7 and 2.2.0p28. The issue allows a user to inject HTML into inputs shown in confirmation dialogs, enabling execution of arbitrary scripts within affected Checkmk installations. The provided sources ide...
CVE-2024-28831 XSS in confirmation pop-up
Stored XSS in some confirmation pop-ups in Checkmk before versions 2.3.0p7 and 2.2.0p28 allows Checkmk users to execute arbitrary scripts by injecting HTML elements into some user input fields that are shown in a confirmation pop-up...
Checkmk Security Vulnerabilities
Checkmk is an editor. A security vulnerability exists in Checkmk versions 2.3.0p7 and 2.2.0p28, which stems from a stored cross-site scripting vulnerability in certain confirmation pop-up windows...
Checkmk Security Vulnerabilities
Checkmk is an editor. A security vulnerability exists in Checkmk versions 2.3.0p7, 2.2.0p28, and 2.1.0p45, which stems from a stored cross-site scripting vulnerability in the crash report page...
PT-2024-22600 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions prior to 2.3.0p7 Checkmk versions prior to 2.2.0p28 Checkmk versions prior to 2.1.0p45 Checkmk version 2.0.0 Description: The issue allows users with permission to change Global Settings to execute arbitrary scripts by...
CVE-2024-5741
Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL...
CVE-2024-5741
Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL...
CVE-2024-5741
Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL...
UBUNTU-CVE-2024-5741
Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL...
CVE-2024-5741 XSS in inventory view
Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL...
CVE-2024-5741 XSS in inventory view
Stored XSS in inventory tree rendering in Checkmk before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 EOL...
CVE-2024-5741
Stored XSS in the inventory tree rendering of Checkmk versions before 2.3.0p7, 2.2.0p28, 2.1.0p45 and 2.0.0 (EOL). The CVE-2024-5741 description indicates an XSS vulnerability in the UI rendering path; no detailed root-cause or exploitation vector is provided beyond the affected versions. CVSS me...