20 matches found
CVE-2021-44916
Opmantek Open-AudIT Community 4.2.0 Fixed in 4.3.0 is affected by a Cross Site Scripting XSS vulnerability. If a bad value is passed to the routine via a URL, malicious JavaScript code can be executed in the victim's browser...
CVE-2021-3333
Opmantek Open-AudIT 4.0.1 is affected by cross-site scripting XSS. When outputting SQL statements for debugging, a maliciously crafted query can trigger an XSS attack. This attack only succeeds if the user is already logged in to Open-AudIT before they click the malicious link...
CVE-2021-44674
An information exposure issue has been discovered in Opmantek Open-AudIT 4.2.0. The vulnerability allows an authenticated attacker to read file outside of the restricted directory...
Design/Logic Flaw
An information exposure issue has been discovered in Opmantek Open-AudIT 4.2.0. The vulnerability allows an authenticated attacker to read file outside of the restricted directory...
CVE-2021-44674
CVE-2021-44674 affects Opmantek Open-AudIT 4.2.0. The vulnerability is an information exposure via a path traversal issue that allows an authenticated attacker to read files outside of restricted directories. The NVD entry notes network access with low attack complexity and the ability to read re...
Opmantek Open-AudIT 路径遍历漏洞
Opmantek Open-AudIT is an open source network discovery and auditing program from Opmantek, Inc. The program intelligently scans networks and network devices and provides status reports.Opmantek Open-AudIT suffers from a path traversal vulnerability that can be exploited by attackers to read file...
CVE-2021-40612
An issue was discovered in Opmantek Open-AudIT after 3.5.0. Without authentication, a vulnerability in codeigniter/application/controllers/util.php allows an attacker perform command execution without echoes...
Authentication flaw
An issue was discovered in Opmantek Open-AudIT after 3.5.0. Without authentication, a vulnerability in codeigniter/application/controllers/util.php allows an attacker perform command execution without echoes...
CVE-2021-40612
An issue was discovered in Opmantek Open-AudIT after 3.5.0. Without authentication, a vulnerability in codeigniter/application/controllers/util.php allows an attacker perform command execution without echoes...
CVE-2021-44916
Opmantek Open-AudIT Community 4.2.0 Fixed in 4.3.0 is affected by a Cross Site Scripting XSS vulnerability. If a bad value is passed to the routine via a URL, malicious JavaScript code can be executed in the victim's browser...
CVE-2021-44916
Opmantek Open-AudIT Community 4.2.0 Fixed in 4.3.0 is affected by a Cross Site Scripting XSS vulnerability. If a bad value is passed to the routine via a URL, malicious JavaScript code can be executed in the victim's browser...
Cross site scripting
Opmantek Open-AudIT Community 4.2.0 Fixed in 4.3.0 is affected by a Cross Site Scripting XSS vulnerability. If a bad value is passed to the routine via a URL, malicious JavaScript code can be executed in the victim's browser...
CVE-2021-44916
Opmantek Open-AudIT Community 4.2.0 Fixed in 4.3.0 is affected by a Cross Site Scripting XSS vulnerability. If a bad value is passed to the routine via a URL, malicious JavaScript code can be executed in the victim's browser...
CVE-2021-3333
Opmantek Open-AudIT 4.0.1 is affected by cross-site scripting XSS. When outputting SQL statements for debugging, a maliciously crafted query can trigger an XSS attack. This attack only succeeds if the user is already logged in to Open-AudIT before they click the malicious link...
Cross site scripting
Opmantek Open-AudIT 4.0.1 is affected by cross-site scripting XSS. When outputting SQL statements for debugging, a maliciously crafted query can trigger an XSS attack. This attack only succeeds if the user is already logged in to Open-AudIT before they click the malicious link...
CVE-2021-3333
Opmantek Open-AudIT 4.0.1 is affected by cross-site scripting XSS. When outputting SQL statements for debugging, a maliciously crafted query can trigger an XSS attack. This attack only succeeds if the user is already logged in to Open-AudIT before they click the malicious link...
Opmantek Open-AudIT m_discoveries.php Command Injection (CVE-2020-11941)
A command injection vulnerability exists in Open-AudIT. The vulnerability is due to insufficient input validation in mdiscoveries.php...
Opmantek Open-AudIT Code Issue Vulnerability
Opmantek Open-AudIT is an open source network discovery and auditing program from Opmantek USA. The program intelligently scans networks and network devices and provides status reports. A code issue vulnerability exists in Opmantek Open-AudIT version 3.2.2. An attacker can exploit the vulnerabili...
Opmantek Open-AudIT Injection Vulnerability
Opmantek Open-AudIT is an open source network discovery and auditing program from Opmantek USA. The program intelligently scans networks and network devices and provides status reports. Opmantek Open-AudIT suffers from an injection vulnerability. An attacker can exploit this vulnerability to inje...
Opmantek Open-AudIT Detection
Detection of Opmantek Open-AudIT. The script sends a connection request to the server and attempts to detect Opmantek Open-AudIT and to extract its version. SPDX-FileCopyrightText: 2018 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the...