4 matches found
Design/Logic Flaw
FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Prior to version 1.5.10.15, due to a lack of request sanitization in the logs, a malicious request containing XSS would be stored in a log file. When an administrator of the FOG server logged in and viewed the log...
CVE-2023-46235 FOG stored XSS on log screen via unsanitized request logging
FOG is a free open-source cloning/imaging/rescue suite/inventory management system. Prior to version 1.5.10.15, due to a lack of request sanitization in the logs, a malicious request containing XSS would be stored in a log file. When an administrator of the FOG server logged in and viewed the log...
PT-2023-29918 · Fog · Fog
Name of the Vulnerable Software and Affected Versions: FOG versions prior to 1.5.10.15 Description: The issue is related to a lack of request sanitization in the logs of FOG, a free open-source cloning/imaging/rescue suite/inventory management system. This allows a malicious request containing XS...
FOGProject Security Breach
FOGProject is a free open source network computer cloning and management solution. It can be used to deploy and manage any desktop operating system. A security vulnerability exists in FOGProject versions prior to 1.5.10.15, which stems from a lack of request cleanup in the logs, where malicious...