3 matches found
Ntop-NG 1.1 Cross Site Scripting
Exploit Title: Cross Site Scripting Vulnerability in Ntop-NG CVE-2014-4329 CVE : CVE-2014-4329 Date: 2 July 2014 Exploit Author: Madhu Akula Vendor Homepage: http://www.ntop.org/ Software Link: http://www.ntop.org/get-started/download/ Version : Ntopng 1.1 Severity: High Tested on: Ubuntu & Windo...
CVE-2014-4329
Cross-site scripting XSS vulnerability in lua/hostdetails.lua in ntopng 1.1 allows remote attackers to inject arbitrary web script or HTML via the host parameter...
CVE-2014-4329
ntopng 1.1 is affected by a Cross-Site Scripting (XSS) vulnerability in lua/host_details.lua, allowing remote attackers to inject arbitrary web script or HTML via the host parameter. The underlying issue is improper input validation in host_details.lua. Affected component/file: host_details.lua w...