2 matches found
CVE-2008-4320
CVE-2008-4320 concerns OpenNMS prior to 1.5.94 with multiple cross-site scripting (XSS) flaws that allow remote attackers to inject arbitrary web script or HTML via: (1) the j_username parameter to j_acegi_security_check, (2) the username parameter to notification/list.jsp, and (3) the filter par...
CVE-2008-4320
Multiple cross-site scripting XSS vulnerabilities in OpenNMS before 1.5.94 allow remote attackers to inject arbitrary web script or HTML via 1 the jusername parameter to jacegisecuritycheck, 2 the username parameter to notification/list.jsp, and 3 the filter parameter to event/list...