178 matches found
CVE-2024-45061
A cross-site scripting xss vulnerability exists in the weather map editor functionality of Observium CE 24.4.13528. A specially crafted HTTP request can lead to a arbitrary javascript code execution. An authenticated user would need to click a malicious link provided by the attacker...
Observium add_alert_check cross-site scripting (XSS) vulnerability
Talos Vulnerability Report TALOS-2024-2090 Observium addalertcheck cross-site scripting XSS vulnerability January 15, 2025 CVE Number CVE-2024-47140 SUMMARY A cross-site scripting xss vulnerability exists in the addalertcheck page of Observium CE 24.4.13528. A specially crafted HTTP request can...
Observium 跨站脚本漏洞
Observium is a free server monitoring platform from Observium UK. Written in PHP, the platform is an auto-discovery SNMP-based network monitoring platform that supports a very wide range of network hardware and operating systems, including Cisco, Windows, Linux, HP, NetApp, and more. A cross-site...
Observium 跨站脚本漏洞
Observium is a free server monitoring platform from Observium UK. Written in PHP, the platform is an auto-discovery SNMP-based network monitoring platform that supports a very wide range of network hardware and operating systems, including Cisco, Windows, Linux, HP, NetApp, and more. A cross-site...
Observium vlan html code injection vulnerability
Talos Vulnerability Report TALOS-2024-2091 Observium vlan html code injection vulnerability January 15, 2025 CVE Number CVE-2024-47002 SUMMARY A html code injection vulnerability exists in the vlan management part of Observium CE 24.4.13528. A specially crafted HTTP request can lead to an arbitra...
Observium 跨站脚本漏洞
Observium is a free server monitoring platform from Observium UK. Written in PHP, the platform is an auto-discovery SNMP-based network monitoring platform that supports a very wide range of network hardware and operating systems, including Cisco, Windows, Linux, HP, NetApp, and more. A cross-site...
Observium mapname cross-site scripting (XSS) vulnerability
Talos Vulnerability Report TALOS-2024-2092 Observium mapname cross-site scripting XSS vulnerability January 15, 2025 CVE Number CVE-2024-45061 SUMMARY A cross-site scripting xss vulnerability exists in the weather map editor functionality of Observium CE 24.4.13528. A specially crafted HTTP reque...
Observium Directory Traversal and Local File Inclusion Vulnerability (CNVD-2020-62443)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a directory traversal and local file inclusion vulnerability. The vulnerability stems from the ability to load any file with the...
Observium SQL Injection Vulnerability (CNVD-2020-54786)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to inject malicious SQL queries via the ajax/actions.php...
Observium Cross-Site Scripting Vulnerability (CNVD-2020-54790)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a cross-site scripting vulnerability. An attacker can exploit the vulnerability to inject and store malicious JavaScript code via...
Observium Cross-Site Scripting Vulnerability (CNVD-2020-54791)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to inject and store malicious JavaScript code via...
Observium Directory Traversal and Local File Inclusion Vulnerability
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a directory traversal and local file inclusion vulnerability. The vulnerability stems from the ability to load any file with the...
Observium cross-site scripting vulnerability (CNVD-2020-62447)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. A cross-site scripting vulnerability exists in pages/contacts.inc.php in Observium. An attacker can exploit this vulnerability to inject and store...
Observium Directory Traversal and Local File Inclusion Vulnerability (CNVD-2020-62450)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a directory traversal and local file inclusion vulnerability. The vulnerability stems from the ability to load any file with the...
Observium SQL Injection Vulnerability (CNVD-2020-62449)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from an SQL injection vulnerability. An attacker can inject malicious SQL statements via...
Observium cross-site scripting vulnerability (CNVD-2020-62452)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to inject and store malicious JavaScript code via...
Observium Directory Traversal and Local File Inclusion Vulnerability (CNVD-2020-62451)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a directory traversal and local file inclusion vulnerability. The vulnerability stems from the ability to load any file with the...
Observium SQL Injection Vulnerability
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a SQL injection vulnerability. An attacker can exploit this vulnerability to inject malicious SQL statements via username0 of the...
Observium cross-site scripting vulnerability (CNVD-2020-62446)
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to inject and store malicious JavaScript code via...
Observium Cross-Site Scripting Vulnerability
Observium is a low-maintenance auto-discovery network monitoring platform that supports multiple device types, platforms and operating systems. Observium suffers from a cross-site scripting vulnerability. An attacker can exploit this vulnerability to inject and store malicious JavaScript code via...