Lucene search
K

14 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2015-4684

Malware in sbrugna...

4.3CVSS9.3AI score0.03308EPSS
Exploits5References5
OpenVAS
OpenVAS
added 2016/03/03 12:0 a.m.72 views

Xceedium Xsuite Multiple Vulnerabilities

Xceedium Xsuite is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:xceedium:xsuite";...

9.8CVSS8AI score0.20829EPSS
Exploits10References4
OpenVAS
OpenVAS
added 2016/03/03 12:0 a.m.31 views

Xceedium Xsuite Remote Version Detection

Detection of installed version of Xceedium Xsuite. This script sends an HTTP GET request and tries to get the version from the response. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

7AI score
Exploits0
CNVD
CNVD
added 2015/08/20 12:0 a.m.3 views

Xceedium Xsuite Command Injection Vulnerability

Xceedium Xsuite is a unified identity management solution from Xceedium that provides access control, monitoring and logging capabilities for hybrid cloud environments. The solution supports access control policies based on roles or individual users. A security vulnerability exists in Xceedium...

9.8CVSS7.5AI score0.20829EPSS
Exploits5References1
CNVD
CNVD
added 2015/08/20 12:0 a.m.2 views

Xceedium Xsuite Hardcoded Credentials Vulnerability

Xceedium Xsuite is a unified identity management solution from Xceedium that provides access control, monitoring and logging capabilities for hybrid cloud environments. The solution supports access control policies based on roles or individual users. Xceedium Xsuite suffers from a hard-coded...

9.8CVSS6.9AI score0.11118EPSS
Exploits4References1
CNVD
CNVD
added 2015/08/20 12:0 a.m.6 views

Xceedium Xsuite Open Redirect Vulnerability

Xceedium Xsuite is a unified identity management solution from Xceedium that provides access control, monitoring and logging capabilities for hybrid cloud environments. The solution supports access control policies based on roles or individual users. An open redirection vulnerability exists in...

6.1CVSS6.8AI score0.06719EPSS
Exploits4References1
NVD
NVD
added 2015/08/13 2:59 p.m.24 views

CVE-2015-4666

Directory traversal vulnerability in opm/readsessionlog.php in Xceedium Xsuite 2.4.4.5 and earlier allows remote attackers to read arbitrary files via a ....// quadruple dot double slash in the logFile parameter...

5CVSS6.5AI score0.16235EPSS
Exploits5References4
NVD
NVD
added 2015/08/13 2:59 p.m.21 views

CVE-2015-4665

Cross-site scripting XSS vulnerability in ajaxcmd.php in Xceedium Xsuite 2.4.4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the fileName parameter...

4.3CVSS5.6AI score0.03308EPSS
Exploits5References4
Prion
Prion
added 2015/08/13 2:59 p.m.16 views

Directory traversal

Directory traversal vulnerability in opm/readsessionlog.php in Xceedium Xsuite 2.4.4.5 and earlier allows remote attackers to read arbitrary files via a ....// quadruple dot double slash in the logFile parameter...

5CVSS7AI score0.16235EPSS
Exploits5References4Affected Software1
Cvelist
Cvelist
added 2015/08/13 2:0 p.m.28 views

CVE-2015-4665

Cross-site scripting XSS vulnerability in ajaxcmd.php in Xceedium Xsuite 2.4.4.1 and earlier allows remote attackers to inject arbitrary web script or HTML via the fileName parameter...

7.9AI score0.03308EPSS
Exploits5References4
CVE
CVE
added 2015/08/13 2:0 p.m.93 views

CVE-2015-4665

CVE-2015-4665 concerns a cross-site scripting (XSS) vulnerability in Xceedium Xsuite. The flaw resides in ajax_cmd.php, affecting Xsuite versions 2.4.4.1 and earlier, where a malicious value supplied via the fileName parameter can inject arbitrary script/HTML in a user’s browser. Public documenta...

4.3CVSS7.7AI score0.03308EPSS
Exploits5References4Affected Software1
Cvelist
Cvelist
added 2015/08/13 2:0 p.m.24 views

CVE-2015-4666

Directory traversal vulnerability in opm/readsessionlog.php in Xceedium Xsuite 2.4.4.5 and earlier allows remote attackers to read arbitrary files via a ....// quadruple dot double slash in the logFile parameter...

9.3AI score0.16235EPSS
Exploits5References4
CVE
CVE
added 2015/08/13 2:0 p.m.114 views

CVE-2015-4666

CVE-2015-4666 affects Xceedium Xsuite 2.4.4.5 and earlier, exposing a directory-traversal flaw in the opm/read_sessionlog.php script. The vulnerability allows unauthenticated users to read arbitrary files via the logFile parameter using a quadruple dot and slash pattern (....//), potentially expo...

5CVSS9.1AI score0.16235EPSS
Exploits5References4Affected Software1
securityvulns
securityvulns
added 2015/07/27 12:0 a.m.74 views

Multiple (remote and local) Vulnerabilities in Xceedium Xsuite [MZ-15-02]

See also: http://www.modzero.ch/advisories/MZ-15-02-Xceedium-Xsuite.txt --------------------------------------------------------------------- modzero Security Advisory: Multiple Vulnerabilities in Xceedium Xsuite MZ-15-02 ---------------------------------------------------------------------...

7.5CVSS0.3AI score0.20829EPSS
Exploits10
Rows per page
Query Builder