2 matches found
CVE-2019-11604
CVE-2019-11604 affects Quest KACE Systems Management Appliance prior to 9.1. The issue is an unauthenticated reflected Cross-Site Scripting vulnerability in the web interface: input delivered to the GET parameter of /service/kbot_service_notsoap.php is not properly validated or sanitized, allowin...
Quest KACE Systems Management Appliance 9.0 Cross Site Scripting
RCE Security Advisory https://www.rcesecurity.com 1. ADVISORY INFORMATION ======================= Product: Quest KACE Systems Management Appliance Vendor URL: www.quest.com Type: Cross-Site Scripting CWE-79 Date found: 2018-09-09 Date published: 2019-05-19 CVSSv3 Score: 4.7...