KEMP LoadMaster 7.135.0.13245 - Persistent Cross-Site Scripting / Remote Code Execution

Vulnerability Summary KEMP’s main product, the LoadMaster, is a load balancer built on its own proprietary software platform called LMOS, that enables it to run on almost any platform: As a KEMP LoadMaster appliance, a Virtual LoadMaster VLM deployed on Hyper­V, VMWare, on bare metal or in the...

Multiple Reflected Cross-Site Scripting Vulnerabilities in Kemp Virtual LoadMaster

Kemp Virtual LoadMaster is a virtual load balancer. Kemp Virtual LoadMaster suffers from multiple cross-site scripting vulnerabilities that can be exploited by remote attackers to construct malicious URIs and trick users into parsing them, which can be used to obtain sensitive cookies, hijack...

Multiple Cross-Site Request Forgery Vulnerabilities in Kemp Virtual LoadMaster

Kemp Virtual LoadMaster is a virtual load balancer. Kemp Virtual LoadMaster suffers from multiple cross-site request forgery vulnerabilities that allow remote attackers to construct malicious URIs, trick users into parsing them, and perform malicious actions in the context of the target user...

Kemp Virtual LoadMaster /progs/fwaccess/add/0 comment stored cross-site scripting vulnerability

Kemp Virtual LoadMaster is a virtual load balancer. Kemp Virtual LoadMaster /progs/fwaccess/add/0 handles the comment parameter cross-site scripting vulnerability, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code that can be used to gain access to...

Kemp Virtual LoadMaster /progs/geoctrl/doadd fqdn stored cross-site scripting vulnerability

Kemp Virtual LoadMaster is a virtual load balancer. Kemp Virtual LoadMaster /progs/geoctrl/doadd handles the fqdn parameter cross-site scripting vulnerability, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code that can be used to gain access to...

Kemp Virtual LoadMaster /progs/doconfig/setmotd Stored Cross-Site Scripting Vulnerability

Kemp Virtual LoadMaster is a virtual load balancer. A cross-site scripting vulnerability exists in Kemp Virtual LoadMaster /progs/doconfig/setmotd, which allows remote attackers to exploit the vulnerability to inject malicious script or HTML code that can be used to gain access to sensitive...

Kemp Virtual LoadMaster seterrmsg() Arbitrary Code Execution Vulnerability

Kemp Virtual LoadMaster is a virtual load balancer. A security vulnerability in the seterrmsg function of the Kemp Virtual LoadMaster /usr/wui/progs/fwaccess script allows an attacker to submit a special request to execute arbitrary code...