Lucene search
K

334 matches found

Prion
Prion
added 2014/04/10 8:29 p.m.12 views

Open redirect

Open redirect vulnerability in Dell OpenManage Server Administrator OMSA before 7.3.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the file parameter to HelpViewer...

5.8CVSS7.1AI score0.01177EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2014/04/10 7:0 p.m.20 views

CVE-2013-0740

Open redirect vulnerability in Dell OpenManage Server Administrator OMSA before 7.3.0 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the file parameter to HelpViewer...

6.6AI score0.01177EPSS
Exploits0References3
CVE
CVE
added 2014/04/10 7:0 p.m.58 views

CVE-2013-0740

Dell OpenManage Server Administrator (OMSA) prior to 7.3.0 contains an open redirect vulnerability in HelpViewer where an attacker can use a URL in the file parameter to redirect users to arbitrary sites and enable phishing. Affected product/version: OMSA

5.8CVSS6.9AI score0.01177EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2014/01/20 4:58 a.m.19 views

CVE-2013-3595

The OpenManage web application 2.5 build 1.19 on Dell PowerConnect 3348 1.2.1.3, 3524p 2.0.0.48, and 5324 2.0.1.4 switches allows remote authenticated users to cause a denial of service device reset via a direct request to an unspecified OSPF URL...

6.8CVSS6.3AI score0.01755EPSS
Exploits0References2
Prion
Prion
added 2014/01/20 4:58 a.m.16 views

Design/Logic Flaw

The OpenManage web application 2.5 build 1.19 on Dell PowerConnect 3348 1.2.1.3, 3524p 2.0.0.48, and 5324 2.0.1.4 switches allows remote authenticated users to cause a denial of service device reset via a direct request to an unspecified OSPF URL...

6.8CVSS6.8AI score0.01755EPSS
Exploits0References2Affected Software3
Cvelist
Cvelist
added 2014/01/20 2:0 a.m.25 views

CVE-2013-3595

The OpenManage web application 2.5 build 1.19 on Dell PowerConnect 3348 1.2.1.3, 3524p 2.0.0.48, and 5324 2.0.1.4 switches allows remote authenticated users to cause a denial of service device reset via a direct request to an unspecified OSPF URL...

6.3AI score0.01755EPSS
Exploits0References2
CVE
CVE
added 2014/01/20 2:0 a.m.42 views

CVE-2013-3595

The CVE-2013-3595 issue affects Dell PowerConnect 3348, 3524p, and 5324 switches with the OpenManage web application (version 2.5 build 1.19). A remote authenticated user can trigger a denial-of-service (device reset) by issuing a direct request to an unspecified OSPF URL. Exploitation details ar...

6.8CVSS6.5AI score0.01755EPSS
Exploits0References2Affected Software3
OpenVAS
OpenVAS
added 2013/01/30 12:0 a.m.60 views

Dell OpenManage Server Administrator Multiple XSS Vulnerabilities

Dell OpenManage Server Administrator is prone to multiple cross site scripting vulnerabilities. SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...

4.3CVSS6AI score0.02813EPSS
Exploits0References4
NVD
NVD
added 2013/01/25 12:0 p.m.20 views

CVE-2012-6272

Multiple cross-site scripting XSS vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic parameter to html/indexmain.htm in 1 help/sm/en/Output/wwhelp/wwhimpl/js/, 2...

4.3CVSS5.7AI score0.02813EPSS
Exploits0References1
Prion
Prion
added 2013/01/25 12:0 p.m.14 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic parameter to html/indexmain.htm in 1 help/sm/en/Output/wwhelp/wwhimpl/js/, 2...

4.3CVSS6.1AI score0.02813EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2013/01/25 11:0 a.m.19 views

CVE-2012-6272

Multiple cross-site scripting XSS vulnerabilities in Dell OpenManage Server Administrator 6.5.0.1, 7.0.0.1, and 7.1.0.1 allow remote attackers to inject arbitrary web script or HTML via the topic parameter to html/indexmain.htm in 1 help/sm/en/Output/wwhelp/wwhimpl/js/, 2...

5.7AI score0.02813EPSS
Exploits0References1
CVE
CVE
added 2013/01/25 11:0 a.m.54 views

CVE-2012-6272

Dell OpenManage Server Administrator (OMSA) versions 6.5.0.1, 7.0.0.1, and 7.1.0.1 contain DOM-based/URL-based XSS via the topic parameter to html/index_main.htm across multiple help paths (e.g., help/sm/en/Output/wwhelp/wwhimpl/js/ and related locales). The vulnerability allows remote attackers ...

4.3CVSS5.8AI score0.02813EPSS
Exploits0References1Affected Software1
Tenable Nessus
Tenable Nessus
added 2013/01/11 12:0 a.m.46 views

Dell OpenManage Server Administrator index_main.htm DOM-based XSS

The version of Dell OpenManage Server Administrator hosted on the remote web server has a cross-site scripting vulnerability. Making a specially crafted request for indexmain.htm can result in client-side script injection. An attacker could exploit this by tricking a user into requesting a...

4.3CVSS5.1AI score0.02813EPSS
Exploits0References2
Exploit DB
Exploit DB
added 2013/01/09 12:0 a.m.33 views

Dell OpenManage Server Administrator - Cross-Site Scripting

source: https://www.securityfocus.com/bid/57212/info Dell OpenManage Server Administrator is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in the browser of an...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2013/01/09 12:0 a.m.12 views

Dell OpenManage Server Administrator - Cross-Site Scripting

Dell OpenManage Server Administrator - Cross-Site Scripting source: https://www.securityfocus.com/bid/57212/info Dell OpenManage Server Administrator is prone to a cross-site scripting vulnerability because it fails to properly sanitize user-supplied input. An attacker may leverage this issue to...

6.8AI score
Exploits0
Tenable Nessus
Tenable Nessus
added 2012/11/20 12:0 a.m.124 views

Dell OpenManage Server Administrator omalogin.html DOM-based XSS

The version of Dell OpenManage Server Administrator hosted on the remote web server has a cross-site scripting vulnerability. Making a specially crafted request for omalogin.html can result in client-side script injection. An attacker could exploit this by tricking a user into requesting a...

4.3CVSS5.1AI score0.02469EPSS
Exploits0References4
NVD
NVD
added 2012/11/15 11:58 a.m.17 views

CVE-2012-4955

Cross-site scripting XSS vulnerability in Dell OpenManage Server Administrator OMSA before 6.5.0.1, 7.0 before 7.0.0.1, and 7.1 before 7.1.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS5.7AI score0.02469EPSS
Exploits0References8
Prion
Prion
added 2012/11/15 11:58 a.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in Dell OpenManage Server Administrator OMSA before 6.5.0.1, 7.0 before 7.0.0.1, and 7.1 before 7.1.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

4.3CVSS6.1AI score0.02469EPSS
Exploits0References8Affected Software1
Cvelist
Cvelist
added 2012/11/15 11:0 a.m.25 views

CVE-2012-4955

Cross-site scripting XSS vulnerability in Dell OpenManage Server Administrator OMSA before 6.5.0.1, 7.0 before 7.0.0.1, and 7.1 before 7.1.0.1 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors...

5.7AI score0.02469EPSS
Exploits0References8
CVE
CVE
added 2012/11/15 11:0 a.m.52 views

CVE-2012-4955

Dell OpenManage Server Administrator (OMSA) prior to 6.5.0.1, 7.0 prior to 7.0.0.1, and 7.1 prior to 7.1.0.1 contains a cross-site scripting (XSS) vulnerability. The Nessus entry specifies DOM-based XSS in omalogin.html and mentions a related vector in omatasks.html, enabling remote attackers to ...

4.3CVSS5.8AI score0.02469EPSS
Exploits0References8Affected Software1
Rows per page
Query Builder