18 matches found
EUVD-2017-6248
Malware in sbrugna...
EUVD-2017-6461
Malware in sbrugna...
EUVD-2022-44625
Malicious code in bioql PyPI...
EUVD-2022-44627
Malicious code in bioql PyPI...
CVE-2017-15880
SQL injection vulnerability vulnerability in the EyesOfNetwork web interface aka eonweb 5.1-0 allows remote authenticated administrators to execute arbitrary SQL commands via the groupname parameter to module/admingroup/addmodifygroup.php for insertgroup and updategroup...
CVE-2017-16000
SQL injection vulnerability in the EyesOfNetwork web interface aka eonweb 5.1-0 allows remote authenticated administrators to execute arbitrary SQL commands via the graph parameter to module/capacityperlabel/index.php...
CVE-2022-41433
EyesOfNetwork Web Interface v5.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /module/adminbp/addapplication.php...
CVE-2022-41433
EyesOfNetwork Web Interface v5.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /module/adminbp/addapplication.php...
Cross site scripting
EyesOfNetwork Web Interface v5.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /module/reportevent/index.php...
CVE-2022-41433
EyesOfNetwork Web Interface v5.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /module/adminbp/addapplication.php...
PT-2022-25868 · Unknown · Eyesofnetwork Web Interface
Name of the Vulnerable Software and Affected Versions: EyesOfNetwork Web Interface version 5.3 Description: A reflected cross-site scripting XSS issue was found in the EyesOfNetwork Web Interface. The issue is related to the /lilac/main.php API endpoint. Recommendations: For EyesOfNetwork Web...
CVE-2022-41432
EyesOfNetwork Web Interface v5.3 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /module/reportevent/index.php...
CVE-2017-16000
SQL injection vulnerability in the EyesOfNetwork web interface aka eonweb 5.1-0 allows remote authenticated administrators to execute arbitrary SQL commands via the graph parameter to module/capacityperlabel/index.php...
CVE-2017-14984
Cross-site scripting XSS vulnerability in the EyesOfNetwork web interface aka eonweb 5.1-0 allows remote authenticated users to inject arbitrary web script or HTML via the bpname parameter to /module/adminbp/addservices.php...
Cross site scripting
Cross-site scripting XSS vulnerability in the EyesOfNetwork web interface aka eonweb 5.1-0 allows remote authenticated administrators to inject arbitrary web script or HTML via the object parameter to module/adminconf/index.php...
EyesOfNetwork web interface SQL injection vulnerability (CNVD-2017-33830)
EyesOfNetwork EON is an open source, free IT monitoring solution. The solution provides business process configuration tools, generating pop-up windows when events occur in the active queue, etc. EyesOfNetwork web interface aka eonweb is one of the web interfaces. A SQL injection vulnerability...
Sql injection
The EyesOfNetwork web interface aka eonweb 5.1-0 has SQL injection via the username parameter to module/adminuser/addmodifyuser.php in the "ACCOUNT CREATION" section, related to lack of input validation in include/function.php...
Sql injection
The EyesOfNetwork web interface aka eonweb 5.1-0 has SQL injection via the term parameter to module/admingroup/search.php...