36 matches found
EUVD-2019-6728
Malware in sbrugna...
EUVD-2008-5356
Malware in sbrugna...
Netdisco Unauthenticated Access
Netdisco is a web-based network management tool. When accessible without authentication, an attacker can gain unauthorized access to the Netdisco interface, potentially leading to information disclosure or further exploitation of the system. No source data...
EUVD-2023-41506
Malicious code in bioql PyPI...
EUVD-2023-41505
Malicious code in bioql PyPI...
CVE-2019-15810
Insufficient sanitization during device search in Netdisco 2.042010 allows for reflected XSS via manipulation of a URL parameter...
CVE-2008-5379
netdisco-mibs-installer 1.0 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/netdisco-mibs-0.6.tar.gz temporary file, related to the 1 netdisco-mibs-install and 2 netdisco-mibs-download scripts...
CVE-2023-37623
Netdisco before v2.063000 was discovered to contain a cross-site scripting XSS vulnerability via the component /Web/TypeAhead.pm...
CVE-2023-37624
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links...
CVE-2023-37623
Netdisco before v2.063000 was discovered to contain a cross-site scripting XSS vulnerability via the component /Web/TypeAhead.pm...
CVE-2023-37624
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links...
CVE-2023-37623
Netdisco before v2.063000 was discovered to contain a cross-site scripting XSS vulnerability via the component /Web/TypeAhead.pm...
CVE-2023-37624
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links...
Cross site scripting
Netdisco before v2.063000 was discovered to contain a cross-site scripting XSS vulnerability via the component /Web/TypeAhead.pm...
Open redirect
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links...
CVE-2023-37623
Netdisco before v2.063000 was discovered to contain a cross-site scripting XSS vulnerability via the component /Web/TypeAhead.pm...
CVE-2023-37624
Netdisco (before v2.063000) contains an open redirect vulnerability that could redirect authenticated users to arbitrary URLs via crafted links. The issue is evidenced across multiple sources (NVD/NVD description, CVE listing) with an estimated CVSSv3.1 base score of 6.1 (medium) and impact limit...
CVE-2023-37624
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links...
CVE-2023-37624
Netdisco before v2.063000 was discovered to contain an open redirect vulnerability. An attacker may exploit this vulnerability to redirect users to arbitrary web URLs by tricking the victim users to click on crafted links...
Netdisco 跨站脚本漏洞
Netdisco is a web-based network management tool. A security vulnerability exists in versions prior to Netdisco v2.063000, which stems from a cross-site scripting attack XSS vulnerability in the component /Web/TypeAhead.pm in Netdisco. An attacker could use this vulnerability to attack a user's...