5 matches found
CVE-2015-8368
ntopng aka ntop before 2.2 allows remote authenticated users to change the login context and gain privileges via the user cookie and username parameter to admin/passwordreset.lua...
CVE-2015-8368
ntopng aka ntop before 2.2 allows remote authenticated users to change the login context and gain privileges via the user cookie and username parameter to admin/passwordreset.lua...
UBUNTU-CVE-2015-8368
ntopng aka ntop before 2.2 allows remote authenticated users to change the login context and gain privileges via the user cookie and username parameter to admin/passwordreset.lua...
CVE-2015-8368
Summary: CVE-2015-8368 affects ntopng (ntop) up to version 2.1.x, where remote authenticated users can escalate privileges by tampering with the login flow. The underlying issue allows changing the login context via the user cookie and the username parameter sent to admin/password_reset.lua, effe...
ntop-ng 2.0.15102 Privilege Escalation
Vulnerability title: ntop-ng = 2.0.151021 - Privilege Escalation Author: Dolev Farhi Contact: dolev at flaresec.com Vulnerable version: 2.0.151021 Fixed version: 2.2 Link: ntop.org Date 27.11.2015 CVE-2015-8368 Product Details: ntopng is the next generation version of the original ntop, a network...