30 matches found
EUVD-2019-5525
Malware in sbrugna...
EUVD-2019-3240
Malware in sbrugna...
EUVD-2019-5524
Malware in sbrugna...
CVE-2019-14297
Veeam ONE Reporter 9.5.0.3201 allows XSS via the Add/Edit Widget with a crafted Caption field to setDashboardWidget in CommonDataHandlerReadOnly.ashx...
Veeam ONE Reporter Cross-Site Scripting Vulnerability
Veeam ONE Reporter is part of the Veeam ONE integrated solution from Veeam Switzerland. The product is used for analytics, decision making, refunds, change tracking, capacity planning and resource utilization optimization. A cross-site scripting vulnerability exists in Veeam ONE Reporter version...
Veeam ONE Reporter Cross-Site Scripting Vulnerability (CNVD-2019-24803)
Veeam ONE Reporter is part of the Veeam ONE integrated solution from Veeam Switzerland. The product is used for analytics, decision making, refunds, change tracking, capacity planning and resource utilization optimization. A cross-site scripting vulnerability exists in Veeam ONE Reporter version...
CVE-2019-14298
Veeam ONE Reporter 9.5.0.3201 allows XSS via a crafted Descriptionconfig field to addDashboard or editDashboard in CommonDataHandlerReadOnly.ashx...
CVE-2019-14297
Veeam ONE Reporter 9.5.0.3201 allows XSS via the Add/Edit Widget with a crafted Caption field to setDashboardWidget in CommonDataHandlerReadOnly.ashx...
CVE-2019-14298
Veeam ONE Reporter 9.5.0.3201 allows XSS via a crafted Descriptionconfig field to addDashboard or editDashboard in CommonDataHandlerReadOnly.ashx...
Code injection
Veeam ONE Reporter 9.5.0.3201 allows XSS via a crafted Descriptionconfig field to addDashboard or editDashboard in CommonDataHandlerReadOnly.ashx...
Code injection
Veeam ONE Reporter 9.5.0.3201 allows XSS via the Add/Edit Widget with a crafted Caption field to setDashboardWidget in CommonDataHandlerReadOnly.ashx...
CVE-2019-14298
Veeam ONE Reporter 9.5.0.3201 allows XSS via a crafted Descriptionconfig field to addDashboard or editDashboard in CommonDataHandlerReadOnly.ashx...
CVE-2019-14297
Veeam ONE Reporter 9.5.0.3201 allows XSS via the Add/Edit Widget with a crafted Caption field to setDashboardWidget in CommonDataHandlerReadOnly.ashx...
Cross site request forgery (csrf)
Veeam ONE Reporter 9.5.0.3201 allows CSRF...
CVE-2019-11569
Veeam ONE Reporter 9.5.0.3201 allows CSRF...
CVE-2019-11569
Veeam ONE Reporter 9.5.0.3201 is affected by a Cross‑Site Request Forgery vulnerability in the web application, where requests are not adequately validated as coming from a trusted user. The CVE details show an exploitable CSRF path that can trigger unintended actions (example: deleteDashboard) v...
Veeam ONE Reporter Cross-Site Request Forgery Vulnerability
Veeam ONE Reporter is part of the Veeam ONE integrated solution and includes detailed reports and dashboards for documentation, analytics, decision making, refunds, change tracking, capacity planning and resource utilization optimization. A cross-site request forgery vulnerability in Veeam ONE...
Veeam ONE Reporter 9.5.0.3201 - Persistent Cross-site Scripting (Add/Edit Widget) Vulnerability
Exploit for multiple platform in category web applications Exploit Title: Veeam ONE Reporter - Stored Cross-site Scripting Add/Edit Widget Exploit Author: Seyed Sadegh Khatami Website: https://www.cert.ir Vendor Homepage: https://www.veeam.com/ Software Link:...
Veeam ONE Reporter 9.5.0.3201 - Multiple Cross-Site Request Forgery Vulnerabilities
Exploit for multiple platform in category web applications Exploit Title: Veeam ONE Reporter - Cross-Site Request Forgery All Actions/Methods Exploit Author: Seyed Sadegh Khatami Website: https://www.cert.ir Vendor Homepage: https://www.veeam.com/ Software Link:...
Veeam ONE Reporter 9.5.0.3201 - Persistent Cross-Site Scripting Vulnerability
Exploit for multiple platform in category web applications Exploit Title: Veeam ONE Reporter - Stored Cross-site Scripting Stored XSS Exploit Author: Seyed Sadegh Khatami Website: https://www.cert.ir Vendor Homepage: https://www.veeam.com/ Software Link:...