Lucene search
K

7 matches found

CNVD
CNVD
added 2020/07/08 12:0 a.m.1 views

NeDi Consulting NeDi Cross-Site Scripting Vulnerability (CNVD-2020-44578)

NeDi Consulting NeDi is a suite of open source software that supports discovery and mapping of network devices from the Swiss company NeDi Consulting. A cross-site scripting vulnerability exists in NeDi Consulting NeDi version 1.9C. The vulnerability can be exploited to execute arbitrary JavaScri...

5.4CVSS6.7AI score0.00568EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/08 12:0 a.m.1 views

NeDi Consulting NeDi Cross-Site Scripting Vulnerability (CNVD-2020-44577)

NeDi Consulting NeDi is a suite of open source software that supports the discovery and mapping of network devices from the Swiss company NeDi Consulting. A cross-site scripting vulnerability exists in NeDi Consulting NeDi version 1.9C. The vulnerability can be exploited to execute arbitrary...

5.4CVSS6.7AI score0.00568EPSS
Exploits0References1
CNVD
CNVD
added 2020/07/08 12:0 a.m.1 views

NeDi Consulting NeDi Cross-Site Scripting Vulnerability (CNVD-2020-44576)

NeDi Consulting NeDi is a suite of open source software that supports the discovery and mapping of network devices from the Swiss company NeDi Consulting. A cross-site scripting vulnerability exists in NeDi Consulting NeDi version 1.9C. The vulnerability can be exploited to execute arbitrary...

5.4CVSS6.7AI score0.00568EPSS
Exploits0References1
OSV
OSV
added 2020/07/07 4:15 p.m.2 views

CVE-2020-15030

NeDi 1.9C is vulnerable to cross-site scripting XSS attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Routes.php rtr parameter...

5.4CVSS6.2AI score0.00568EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2020/07/07 4:15 p.m.0 views

CVE-2020-15035

NeDi 1.9C is vulnerable to cross-site scripting XSS attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Map.php hde parameter...

5.4CVSS5.7AI score0.00532EPSS
Exploits0References4
CNVD
CNVD
added 2020/06/30 12:0 a.m.0 views

NeDi Consulting Unspecified Vulnerability in NeDi

NeDi Consulting NeDi is a suite of open source software that supports the discovery and mapping of network devices from the Swiss company NeDi Consulting. A security vulnerability exists in NeDi Consulting NeDi version 1.9C, which stems from the pwsec.php file not properly escaping shell...

9CVSS7.3AI score0.03681EPSS
Exploits0References1
OSV
OSV
added 2020/06/29 5:15 p.m.1 views

CVE-2020-14414

NeDi 1.9C is vulnerable to Remote Command Execution. pwsec.php improperly escapes shell metacharacters from a POST request. An attacker can exploit this by crafting an arbitrary payload any system commands that contains shell metacharacters via a POST request with a pw parameter. This can also be...

8.8CVSS7.4AI score0.03681EPSS
Exploits0References1
Rows per page
Query Builder