3 matches found
Ipswitch WhatsUp < 16.4 Multiple Vulnerabilities
Ipswitch WhatsUp Gold is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:progress:whatsupgold"...
Ipswitch WhatsUp Gold < 16.4 Multiple Vulnerabilities
The remote host has a version of Ipswitch WhatsUp Gold installed that is prior to 16.4.0. It is, therefore, affected by the following vulnerabilities : - Multiple SQL injection vulnerabilities exist due to improper sanitization of user-supplied input to the 'sUniqueID' parameter and the 'find...
CVE-2015-6004
Ipswitch WhatsUp Gold prior to 16.4 is affected by CVE-2015-6004 (SQL injection) via the sUniqueID/Find Device inputs in the Reports component, enabling an authenticated remote attacker to manipulate or disclose data in the backend database. The issue is complemented by CVE-2015-6005 (stored XSS)...