Lucene search
K

601 matches found

Tenable Nessus
Tenable Nessus
added 2007/11/07 12:0 a.m.57 views

ManageEngine OpManager Login.do Multiple Parameter XSS

The remote host is running ManageEngine OpManager, a web-based network management application. The version of ManageEngine OpManager installed on the remote host fails to sanitize user input to the 'requestid' parameter of the 'jsp/Login.do' script before using it to generate dynamic content. An...

4.3CVSS5.8AI score0.01033EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2007/07/07 12:0 a.m.26 views

netflow-xss.txt

NetFlow Analizer 5 & OpManager 7 multiple XSS vendor url:http://www.adventnet.com/ advisore:http://lostmon.blogspot.com/2007/07/ netflow-analizer-5-opmanager-7-multiple.html vendor notify:yes exploits include:yes NetFlow Analizer and OpManager contains a flaw that allows a remote cross site...

7.4AI score
Exploits0
NVD
NVD
added 2007/07/06 6:30 p.m.15 views

CVE-2007-3594

Multiple cross-site scripting XSS vulnerabilities in AdventNet ManageEngine OpManager 6 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter in a ping.do and b traceRoute.do in map/; the 2 reportName, 3 displayName, and 4 selectedNode parameters to c...

2.6CVSS5.7AI score0.05766EPSS
Exploits1References13
Prion
Prion
added 2007/07/06 6:30 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in AdventNet ManageEngine OpManager 6 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter in a ping.do and b traceRoute.do in map/; the 2 reportName, 3 displayName, and 4 selectedNode parameters to c...

2.6CVSS5.9AI score0.05766EPSS
Exploits1References13Affected Software1
Cvelist
Cvelist
added 2007/07/06 6:0 p.m.23 views

CVE-2007-3594

Multiple cross-site scripting XSS vulnerabilities in AdventNet ManageEngine OpManager 6 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter in a ping.do and b traceRoute.do in map/; the 2 reportName, 3 displayName, and 4 selectedNode parameters to c...

5.7AI score0.05766EPSS
Exploits1References13
CVE
CVE
added 2007/07/06 6:0 p.m.62 views

CVE-2007-3594

CVE-2007-3594 (OpManager) describes multiple cross-site scripting (XSS) vulnerabilities in ManageEngine OpManager 6 and 7. The issue allows remote attackers to inject arbitrary web script or HTML through several parameters across different URLs: (a) name in map/ping.do and map/traceRoute.do; (b) ...

2.6CVSS5.7AI score0.05766EPSS
Exploits1References13Affected Software1
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.13 views

OpManager 67 - adminServiceConfiguration.do?Operation Cross-Site Scripting

OpManager 67 - adminServiceConfiguration.do?Operation Cross-Site Scripting source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.11 views

OpManager 67 - traceRoute.do?name Cross-Site Scripting

OpManager 67 - traceRoute.do?name Cross-Site Scripting source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

Exploits0
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.13 views

OpManager 67 - ping.do?name Cross-Site Scripting

OpManager 67 - ping.do?name Cross-Site Scripting source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script co...

Exploits0
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.24 views

OpManager 67 - reportsReportViewAction.do Multiple Cross-Site Scripting Vulnerabilities

OpManager 67 - reportsReportViewAction.do Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage thes...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.18 views

OpManager 67 - adminDeviceAssociation.do Multiple Cross-Site Scripting Vulnerabilities

OpManager 67 - adminDeviceAssociation.do Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

0.1AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.16 views

OpManager 6/7 - 'traceRoute.do?name' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.19 views

OpManager 6/7 - 'ping.do?name' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.25 views

OpManager 6/7 - reports/ReportViewAction.do Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.20 views

OpManager 6/7 - '/admin/DeviceAssociation.do' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.21 views

OpManager 6/7 - 'admin/ServiceConfiguration.do?Operation' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
NVD
NVD
added 2006/05/12 5:6 p.m.23 views

CVE-2006-2343

Cross-site scripting XSS vulnerability in Search.do in ManageEngine OpManager 6.0 allows remote attackers to inject arbitrary web script or HTML via the searchTerm parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

5.8CVSS5.5AI score0.0118EPSS
Exploits0References4
Prion
Prion
added 2006/05/12 5:6 p.m.25 views

Cross site scripting

Cross-site scripting XSS vulnerability in Search.do in ManageEngine OpManager 6.0 allows remote attackers to inject arbitrary web script or HTML via the searchTerm parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

5.8CVSS5.8AI score0.0118EPSS
Exploits0References4Affected Software1
CVE
CVE
added 2006/05/12 5:0 p.m.65 views

CVE-2006-2343

The provided documents identify CVE-2006-2343 as a cross-site scripting (XSS) vulnerability in ManageEngine OpManager 6.0, affecting the Search.do path via the searchTerm parameter. The root cause is improper handling of user-supplied input leading to injected web script/HTML. Impact is remote co...

5.8CVSS5.5AI score0.0118EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2006/05/12 5:0 p.m.25 views

CVE-2006-2343

Cross-site scripting XSS vulnerability in Search.do in ManageEngine OpManager 6.0 allows remote attackers to inject arbitrary web script or HTML via the searchTerm parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

5.5AI score0.0118EPSS
Exploits0References4
Rows per page
Query Builder