Lucene search
+L

9 matches found

amazon
amazon
added 2013/12/17 12:0 a.m.30 views

Medium: ganglia

Issue Overview: Cross-site scripting XSS vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote attackers to inject arbitrary web script or HTML via the hostregex parameter to the default URI, which is processed by getcontext.php. Affected Packages: ganglia Issue Correction: Ru...

4.3CVSS6AI score0.02199EPSS
Exploits1
openvas
openvas
added 2013/12/17 12:0 a.m.15 views

Fedora Update for ganglia FEDORA-2013-22497

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.02199EPSS
Exploits1References2
openvas
openvas
added 2013/12/17 12:0 a.m.18 views

Fedora Update for ganglia FEDORA-2013-22444

The remote host is missing an update for the SPDX-FileCopyrightText: 2013 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

4.3CVSS6.5AI score0.02199EPSS
Exploits1References2
nessus
nessus
added 2013/12/14 12:0 a.m.20 views

Fedora 20 : ganglia-3.6.0-3.fc20 (2013-22396)

Update to ganglia-web to 3.5.10 and add patch as workaround for reported security issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

4.3CVSS5.3AI score0.02199EPSS
Exploits1References3
nessus
nessus
added 2013/12/10 12:0 a.m.35 views

Fedora 19 : ganglia-3.6.0-3.fc19 (2013-22444)

Update to ganglia-web to 3.5.10 and add patch as workaround for reported security issue. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora security advisory. Tenable has attempted to automatically clean and format it as much as possible...

4.3CVSS5.3AI score0.02199EPSS
Exploits1References3
osv
osv
added 2013/12/05 6:55 p.m.3 views

CVE-2013-6395

Cross-site scripting XSS vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote attackers to inject arbitrary web script or HTML via the hostregex parameter to the default URI, which is processed by getcontext.php...

5.5AI score
Exploits0References11
cve
cve
added 2013/12/05 6:0 p.m.50 views

CVE-2013-6395

CVE-2013-6395 affects Ganglia Web (header.php) via host_regex on default URI, exploitable in version 3.5.8 and 3.5.10, processed by get_context.php. OpenVAS/Nessus entries label it as a remote XSS vulnerability with a VendorFix remediation and CVSS base score 4.3 (MEDIUM). Mitigations across Open...

4.3CVSS5.6AI score0.02199EPSS
Exploits1References7Affected Software1
debiancve
debiancve
added 2013/12/05 6:0 p.m.32 views

CVE-2013-6395

Cross-site scripting XSS vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote attackers to inject arbitrary web script or HTML via the hostregex parameter to the default URI, which is processed by getcontext.php...

4.3CVSS5.5AI score0.02199EPSS
Exploits1
mageia
mageia
added 2013/11/30 9:40 p.m.26 views

Updated ganglia-web package fixes security vulnerability

XSS issue in ganglia-web makes it possible to execute JavaScript in victims' browser after tricking the victim into opening a specially crafted URL CVE-2013-6395...

4.3CVSS2.9AI score0.02199EPSS
Exploits1References2
Rows per page
Query Builder