5 matches found
Eugene Pankov Ajenti Cross-site scripting Vulnerabilities
Multiple cross-site scripting XSS vulnerabilities in the responderror function in routing.py in Eugene Pankov Ajenti before 1.2.21.7 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 resources.js or 2 resources.css in ajenti:static/, related to the traceback page...
GHSA-2CH8-F849-PJG3 Eugene Pankov Ajenti Cross-site scripting Vulnerabilities
Multiple cross-site scripting XSS vulnerabilities in the responderror function in routing.py in Eugene Pankov Ajenti before 1.2.21.7 allow remote attackers to inject arbitrary web script or HTML via the PATHINFO to 1 resources.js or 2 resources.css in ajenti:static/, related to the traceback page...
CVE-2014-2260
Cross-site scripting XSS vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality...
Cross site scripting
Cross-site scripting XSS vulnerability in plugins/main/content/js/ajenti.coffee in Eugene Pankov Ajenti 1.2.13 allows remote authenticated users to inject arbitrary web script or HTML via the command field in the Cron functionality...
CVE-2014-2260
The provided Connected documents confirm CVE-2014-2260 affects Ajenti 1.2.13, with an XSS vulnerability in plugins/main/content/js/ajenti.coffee that allows remote authenticated users to inject arbitrary web script or HTML via the command field in Cron. The root cause is inadequate input handling...