CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

869 matches found

NVD•added 2011/05/20 10:55 p.m.•16 views

CVE-2011-0959

Multiple cross-site scripting XSS vulnerabilities in Cisco Unified Operations Manager CUOM before 8.6 allow remote attackers to inject arbitrary web script or HTML via 1 the extn parameter to iptm/advancedfind.do, 2 the deviceInstanceName parameter to iptm/ddv.do, the 3 cmd or 4 group parameter t...

4.3CVSS5.7AI score0.21464EPSS

Exploits6References5

Prion•added 2011/05/20 10:55 p.m.•15 views

Sql injection

Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager CUOM before 8.6 allow remote attackers to execute arbitrary SQL commands via 1 the CCMs parameter to iptm/PRTestCreation.do or 2 the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug ID CSCtn61716...

7.5CVSS9.1AI score0.03779EPSS

Exploits6References6Affected Software1

Prion•added 2011/05/20 10:55 p.m.•14 views

Cross site scripting

Cross-site scripting XSS vulnerability in CSCOnm/servlet/com.cisco.nm.help.ServerHelpEngine in the Common Services Device Center in Cisco Unified Operations Manager CUOM before 8.6 allows remote attackers to inject arbitrary web script or HTML via the tag parameter, aka Bug ID CSCto12712...

4.3CVSS6AI score0.04654EPSS

Exploits6References5Affected Software1

Prion•added 2011/05/20 10:55 p.m.•15 views

Cross site scripting

4.3CVSS6AI score0.21464EPSS

Exploits6References5Affected Software1

Cvelist•added 2011/05/20 10:0 p.m.•22 views

CVE-2011-0959

5.6AI score0.21464EPSS

Exploits6References5

Cvelist•added 2011/05/20 10:0 p.m.•21 views

CVE-2011-0960

8.3AI score0.03779EPSS

Exploits6References6

Cvelist•added 2011/05/20 10:0 p.m.•19 views

CVE-2011-0962

5.5AI score0.04654EPSS

Exploits6References5

CVE•added 2011/05/20 10:0 p.m.•50 views

CVE-2011-0962

Cisco Unified Operations Manager (CUOM) vulnerability CVE-2011-0962 affects the Common Services Device Center, specifically the CSConm/servlet/com.cisco.nm.help.ServerHelpEngine handling the tag parameter. The issue is a cross-site scripting (XSS) flaw that could allow an attacker to inject arbit...

4.3CVSS5.6AI score0.04654EPSS

Exploits6References5Affected Software1

CVE•added 2011/05/20 10:0 p.m.•49 views

CVE-2011-0959

Cisco Unified Operations Manager (CuOM) prior to v8.6 contains multiple cross-site scripting vulnerabilities (CVE-2011-0959) that allow remote attackers to inject arbitrary scripts via parameters in URLs such as extn (iptm/advancedfind.do), deviceInstanceName (iptm/ddv.do), cmd/group (iptm/eventm...

4.3CVSS5.6AI score0.21464EPSS

Exploits6References5Affected Software1

CVE•added 2011/05/20 10:0 p.m.•50 views

CVE-2011-0960

Cisco Unified Operations Manager (CuOM) before 8.6 is affected by multiple vulnerabilities including blind SQL injection in two endpoints: PRTestCreation.do ( CCMs parameter ) and TelePresenceReportAction.do ( ccm parameter ). Exploitation could allow remote attackers to execute arbitrary SQL com...

7.5CVSS8.5AI score0.03779EPSS

Exploits6References6Affected Software1

seebug.org•added 2011/05/20 12:0 a.m.•39 views

Cisco Unified Operations Manager Multiple Vulnerabilities

No description provided by source. Sense of Security - Security Advisory - SOS-11-006 Release Date. 18-May-2011 Last Update. - Vendor Notification Date. 28-Feb-2011 Product. Cisco Unified Operations Manager Common Services Framework Help Servlet Common Services Device Center CiscoWorks Homepage...

7.5CVSS6.5AI score0.41348EPSS

Exploits10

Positive Technologies•added 2011/05/20 12:0 a.m.•5 views

PT-2011-2778 · Cisco · Cisco Unified Operations Manager

Name of the Vulnerable Software and Affected Versions: Cisco Unified Operations Manager CUOM versions prior to 8.6 Description: The issue allows remote attackers to execute arbitrary SQL commands. This can be achieved via the CCMs parameter to the "/iptm/PRTestCreation.do" API endpoint or the ccm...

7.5CVSS7.4AI score0.03779EPSS

Exploits6References8

Cisco•added 2011/05/18 1:28 p.m.•24 views

Cisco Unified Operations Manager Multiple Cross-Site Scripting Vulnerabilities

Cisco Unified Operations Manager contains multiple cross-site scripting vulnerabilities that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to insufficient validation of user-supplied input to certain scripts that make up the...

4.3CVSS6.2AI score0.21464EPSS

Exploits6References1

Cisco•added 2011/05/18 1:16 p.m.•22 views

Cisco Unified Operations Manager Common Services Device Center Cross-Site Scripting Vulnerability

Cisco Unified Operations Manager contains a cross-site scripting vulnerability that could allow an unauthenticated, remote attacker to conduct cross-site scripting attacks. The vulnerability is due to improper validation of user input supplied to the Common Services Device Center component used b...

4.3CVSS5.6AI score0.04654EPSS

Exploits6References1

Packet Storm•added 2011/05/18 12:0 a.m.•62 views

Cisco Unified Operations Manager XSS / SQL Injection / Directory Traversal

Sense of Security - Security Advisory - SOS-11-006 Release Date. 18-May-2011 Last Update. - Vendor Notification Date. 28-Feb-2011 Product. Cisco Unified Operations Manager Common Services Framework Help Servlet Common Services Device Center CiscoWorks Homepage Note: All of the above products are...

7.5CVSS0.3AI score0.41348EPSS

Exploits10

Exploit DB•added 2011/05/18 12:0 a.m.•20 views

Cisco Unified Operations Manager 8.5 - Common Services Device Center Cross-Site Scripting

source: https://www.securityfocus.com/bid/47903/info Cisco Unified Operations Manager is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacker may leverage this issue to execute arbitrary script code in the browser of an unsuspecti...

7.4AI score

Exploits0

exploitpack•added 2011/05/18 12:0 a.m.•40 views

Cisco Unified Operations Manager - Multiple Vulnerabilities

Cisco Unified Operations Manager - Multiple Vulnerabilities Sense of Security - Security Advisory - SOS-11-006 Release Date. 18-May-2011 Last Update. - Vendor Notification Date. 28-Feb-2011 Product. Cisco Unified Operations Manager Common Services Framework Help Servlet Common Services Device...

7.5CVSS0.9AI score0.41348EPSS

Exploits10

exploitpack•added 2011/05/18 12:0 a.m.•13 views

Cisco Unified Operations Manager 8.5 - Common Services Device Center Cross-Site Scripting

Cisco Unified Operations Manager 8.5 - Common Services Device Center Cross-Site Scripting source: https://www.securityfocus.com/bid/47903/info Cisco Unified Operations Manager is prone to a cross-site scripting vulnerability because it fails to sufficiently sanitize user-supplied data. An attacke...

0.4AI score

Exploits0

Exploit DB•added 2011/05/18 12:0 a.m.•52 views

Cisco Unified Operations Manager - Multiple Vulnerabilities

7.5CVSS7AI score0.41348EPSS

Exploits10

0day.today•added 2011/05/18 12:0 a.m.•61 views

Cisco Unified Operations Manager Multiple Vulnerabilities - SOS-11-006

Exploit for windows platform in category remote exploits Sense of Security - Security Advisory - SOS-11-006 Release Date. 18-May-2011 Last Update. - Vendor Notification Date. 28-Feb-2011 Product. Cisco Unified Operations Manager Common Services Framework Help Servlet Common Services Device Center...

7.1AI score0.41348EPSS

Exploits10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by