NeDi Consulting NeDi Cross-Site Scripting Vulnerability (CNVD-2020-44576)

NeDi Consulting NeDi is a suite of open source software that supports the discovery and mapping of network devices from the Swiss company NeDi Consulting. A cross-site scripting vulnerability exists in NeDi Consulting NeDi version 1.9C. The vulnerability can be exploited to execute arbitrary...

CVE-2020-15029

NeDi 1.9C is vulnerable to cross-site scripting XSS attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php sn parameter...

CVE-2020-15031

NeDi 1.9C is vulnerable to cross-site scripting XSS attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php chg parameter...

Cross site scripting

NeDi 1.9C is vulnerable to cross-site scripting XSS attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php sn parameter...

Cross site scripting

NeDi 1.9C is vulnerable to cross-site scripting XSS attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php chg parameter...

CVE-2020-15029

CVE-2020-15029 affects NeDi 1.9C, vulnerable to cross-site scripting (XSS) via the Assets-Management.php sn parameter. The issue is a client-side script injection risk in the web UI that could allow arbitrary JavaScript execution in authenticated or guest contexts depending on access, as describe...

CVE-2020-15031

CVE-2020-15031 concerns NeDi 1.9C, where a cross-site scripting (XSS) vulnerability exists in the Assets-Management.php chg parameter, allowing an attacker to execute arbitrary JavaScript code. The vulnerability is documented across multiple sources (NVD entry and Red Hat advisory), specifying th...