Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2011/02/17 12:0 a.m.38 views

VMSA-2009-0017 : VMware vCenter, ESX patch and vCenter Lab Manager releases address XSS issues

a. WebWorks Help - Cross-site scripting vulnerability WebWorks Help is an output format that allows online Help to be delivered on multiple platforms and browsers, which makes it easy to publish information on the Web or on an enterprise intranet. WebWorks Help is used for creating the online hel...

4.3CVSS5.2AI score0.02777EPSS
Exploits1References2
securityvulns
securityvulns
added 2010/03/11 12:0 a.m.80 views

CA20100304-01: Security Notice for CA SiteMinder

CA20100304-01: Security Notice for CA SiteMinder Issued: March 04, 2010 CA's support is alerting customers to a security risk with CA SiteMinder. Multiple cross site scripting XSS vulnerabilities exist that can allow a remote attacker to potentially gain sensitive information. CA has provided...

4.3CVSS0.8AI score0.02777EPSS
Exploits1
seebug.org
seebug.org
added 2009/12/18 12:0 a.m.24 views

VMware vCenter Lab Manager WebWorks Help跨站脚本漏洞

CVE ID:CVE-2009-3731 VMware vCenter Lab Manager使IT能够为开发测试创建和管理内部云,并通过自助访问研发、测试、配置和部署复杂的、多级别的应用程序所需的资源,为用户提供更高的服务等级。 WebWorks Help某个输出格式允许在线帮助在多种平台和浏览器上提交,可更加容易的在WEB或企业内网中发布信息。 WebWorks Help没有充分过滤入站请求,可导致内置WebWorks Help的应用程序触发跨站脚本攻击。 成功利用VMware产品中的此漏洞需要诱使用户点击恶意链接或在目标用户登录到vCenter时,ESX或VMware...

4.3CVSS6.5AI score0.02777EPSS
Exploits1
securityvulns
securityvulns
added 2009/12/17 12:0 a.m.68 views

VMSA-2009-0017 VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 - ----------------------------------------------------------------------- VMware Security Advisory Advisory ID: VMSA-2009-0017 Synopsis: VMware vCenter, ESX patch and vCenter Lab Manager releases address cross-site scripting issues Issue date:...

4.3CVSS5.8AI score0.02777EPSS
Exploits1
CVE
CVE
added 2009/12/16 6:0 p.m.73 views

CVE-2009-3731

CVE-2009-3731 describes multiple cross-site scripting (XSS) vulnerabilities in WebWorks Help used by VMware products (e.g., vCenter/ESX/Server, Lab Manager, Stage Manager). The root cause is insufficient sanitization of inbound input in WebWorks Help output formats, enabling remote attackers to i...

4.3CVSS5.6AI score0.02777EPSS
Exploits1References14Affected Software3
Rows per page
Query Builder