3 matches found
Cross site scripting
Multiple cross-site scripting XSS vulnerabilities on the Network Management Card NMC on American Power Conversion APC Switched Rack PDU aka Rack Mount Power Distribution devices and other devices allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. NOTE: the...
CVE-2009-4406
CVE-2009-4406 is an XSS in the APC Network Monitoring/Card web interface. The vulnerability affects the NMC login form: Forms/login1?login_username on AP7932 B2 devices (rpdu 3.3.3 or 3.7.0 on AOS 3.3.4 and possibly other versions) allowing remote attackers to inject arbitrary script/HTML. Conseq...
CVE-2009-4406
Cross-site scripting XSS vulnerability in Forms/login1 in American Power Conversion APC Switched Rack PDU AP7932 B2, running rpdu 3.3.3 or 3.7.0 on AOS 3.3.4, and possibly other versions, allows remote attackers to inject arbitrary web script or HTML via the loginusername parameter...