7 matches found
SUSE CVE-2013-1399
Multiple cross-site request forgery CSRF vulnerabilities in the 1 node request management, 2 live management, and 3 user administration components in the console in Puppet Enterprise PE before 2.7.1 allow remote attackers to hijack the authentication of unspecified victims via unknown vectors...
CVE-2022-31846
A vulnerability in livemfg.shtml of WAVLINK WN535 G3 M35G3R.V5030.180927 allows attackers to obtain sensitive router information via execution of the exec cmd function...
CVE-2013-4968
Puppet Enterprise before 3.0.1 allows remote attackers to 1 conduct clickjacking attacks via unspecified vectors related to the console, and 2 conduct cross-site scripting XSS attacks via unspecified vectors related to "live management."...
Cross site scripting
Puppet Enterprise before 3.0.1 allows remote attackers to 1 conduct clickjacking attacks via unspecified vectors related to the console, and 2 conduct cross-site scripting XSS attacks via unspecified vectors related to "live management."...
CVE-2013-4968
Puppet Enterprise before 3.0.1 allows remote attackers to 1 conduct clickjacking attacks via unspecified vectors related to the console, and 2 conduct cross-site scripting XSS attacks via unspecified vectors related to "live management."...
CVE-2013-4968
Puppet Enterprise before 3.0.1 allows remote attackers to 1 conduct clickjacking attacks via unspecified vectors related to the console, and 2 conduct cross-site scripting XSS attacks via unspecified vectors related to "live management."...
CVE-2013-4968
Puppet Enterprise before 3.0.1 allows remote attackers to 1 conduct clickjacking attacks via unspecified vectors related to the console, and 2 conduct cross-site scripting XSS attacks via unspecified vectors related to "live management."...