Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

NVD
NVDadded 2007/11/21 11:46 p.m.14 views

CVE-2007-6081

AdventNet EventLog Analyzer build 4030 for Windows, and possibly other versions and platforms, installs a mysql instance with a default "root" account without a password, which allows remote attackers to gain privileges and modify logs. Fixed in EventLog Analyzer Build 6000...

7.5CVSS7AI score0.00585EPSS
Exploits0References4
Prion
Prionadded 2007/11/21 11:46 p.m.16 views

Default configuration

AdventNet EventLog Analyzer build 4030 for Windows, and possibly other versions and platforms, installs a mysql instance with a default "root" account without a password, which allows remote attackers to gain privileges and modify logs. Fixed in EventLog Analyzer Build 6000...

7.5CVSS7.6AI score0.00585EPSS
Exploits0References4Affected Software1
CVE
CVEadded 2007/11/21 11:0 p.m.54 views

CVE-2007-6081

AdventNet EventLog Analyzer (Windows, build 4030, and possibly other versions) ships a MySQL instance with a default root/passwordless account, enabling remote attackers to gain privileges and modify logs. The vulnerability is fixed in EventLog Analyzer Build 6000. Affected component: bundled MyS...

7.5CVSS9.7AI score0.00585EPSS
Exploits0References4Affected Software1
Cvelist
Cvelistadded 2007/11/21 11:0 p.m.19 views

CVE-2007-6081

AdventNet EventLog Analyzer build 4030 for Windows, and possibly other versions and platforms, installs a mysql instance with a default "root" account without a password, which allows remote attackers to gain privileges and modify logs. Fixed in EventLog Analyzer Build 6000...

9.7AI score0.00585EPSS
Exploits0References4
Prion
Prionadded 2007/07/06 6:30 p.m.12 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in AdventNet ManageEngine OpManager 6 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter in a ping.do and b traceRoute.do in map/; the 2 reportName, 3 displayName, and 4 selectedNode parameters to c...

2.6CVSS5.9AI score0.00969EPSS
Exploits1References13Affected Software1
Cvelist
Cvelistadded 2007/07/06 6:0 p.m.14 views

CVE-2007-3594

Multiple cross-site scripting XSS vulnerabilities in AdventNet ManageEngine OpManager 6 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter in a ping.do and b traceRoute.do in map/; the 2 reportName, 3 displayName, and 4 selectedNode parameters to c...

5.7AI score0.00969EPSS
Exploits1References13
CVE
CVEadded 2007/07/06 6:0 p.m.59 views

CVE-2007-3594

CVE-2007-3594 (OpManager) describes multiple cross-site scripting (XSS) vulnerabilities in ManageEngine OpManager 6 and 7. The issue allows remote attackers to inject arbitrary web script or HTML through several parameters across different URLs: (a) name in map/ping.do and map/traceRoute.do; (b) ...

2.6CVSS5.7AI score0.00969EPSS
Exploits1References13Affected Software1
Rows per page
Query Builder