Lucene search
K

5 matches found

NVD
NVD
added 2014/09/08 2:55 p.m.13 views

CVE-2014-5464

Cross-site scripting XSS vulnerability in the nDPI traffic classification library in ntopng aka ntop before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header...

4.3CVSS5.6AI score0.04454EPSS
Exploits2References12
OSV
OSV
added 2014/09/08 2:55 p.m.7 views

CVE-2014-5464

Cross-site scripting XSS vulnerability in the nDPI traffic classification library in ntopng aka ntop before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header...

4.3CVSS5.8AI score0.04454EPSS
Exploits2References13
UbuntuCve
UbuntuCve
added 2014/09/08 2:55 p.m.30 views

CVE-2014-5464

Cross-site scripting XSS vulnerability in the nDPI traffic classification library in ntopng aka ntop before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header...

4.3CVSS6AI score0.04454EPSS
Exploits2References2
CVE
CVE
added 2014/09/08 2:0 p.m.45 views

CVE-2014-5464

CVE-2014-5464 describes an XSS vulnerability in the ntopng/ndpi stack where the HTTP Host header is not sanitized in the web frontend. The issue occurs in ntopng (aka ntop) before version 1.2.1, due to untrusted Host header data being injected into the UI, enabling remote attackers to inject arbi...

4.3CVSS5.8AI score0.04454EPSS
Exploits2References12Affected Software1
Cvelist
Cvelist
added 2014/09/08 2:0 p.m.24 views

CVE-2014-5464

Cross-site scripting XSS vulnerability in the nDPI traffic classification library in ntopng aka ntop before 1.2.1 allows remote attackers to inject arbitrary web script or HTML via the HTTP Host header...

5.6AI score0.04454EPSS
Exploits2References12
Rows per page
Query Builder