18 matches found
Cacti 1.2.24 - SQL Injection
Cacti is an open source operational monitoring and fault management framework. Affected versions are subject to a SQL injection discovered in graphview.php. Since guest users can access graphview.php without authentication by default, if guest users are being utilized in an enabled state, there...
EUVD-2023-43232
Malicious code in bioql PyPI...
EUVD-2023-55066
Malicious code in bioql PyPI...
EUVD-2024-28189
Malicious code in bioql PyPI...
EUVD-2023-43235
Malicious code in bioql PyPI...
EUVD-2024-24343
Malicious code in bioql PyPI...
EUVD-2024-34732
Malicious code in bioql PyPI...
EUVD-2024-29342
Malicious code in bioql PyPI...
EUVD-2024-29332
Malicious code in bioql PyPI...
EUVD-2024-29340
Malicious code in bioql PyPI...
EUVD-2023-43083
Malicious code in bioql PyPI...
Debian dsa-5646 : cacti - security update
The remote Debian 11 / 12 host has a package installed that is affected by multiple vulnerabilities as referenced in the dsa-5646 advisory. -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 - ------------------------------------------------------------------------- Debian Security Advisory DSA-5646...
CVE-2023-49088
Cacti is an open source operational monitoring and fault management framework. The fix applied for CVE-2023-39515 in version 1.2.25 is incomplete as it enables an adversary to have a victim browser execute malicious code when a victim user hovers their mouse over the malicious data source path in...
UBUNTU-CVE-2023-39362
Cacti is an open source operational monitoring and fault management framework. In Cacti 1.2.24, under certain conditions, an authenticated privileged user, can use a malicious string in the SNMP options of a Device, performing command injection and obtaining remote code execution on the underlyin...
Shinken 授权问题漏洞
Shinken is a modern, Nagios-compatible monitoring framework from the individual developer Gabès Jean. An authorization issue vulnerability exists in Shinken Monitoring version 2.4.3, which stems from incorrect access control.The SafeUnpickler class in shinken/safepickle.py uses a weak...
openSUSE: Security Advisory for python-azure-agent (openSUSE-SU-2020:0261-1)
The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...
Moderate: Red Hat Security Advisory: sensu security update
An update for sensu is now available for Red Hat OpenStack Platform 10. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives adetailed severity rating, is available for each vulnerability from th...
Moderate: Red Hat Security Advisory: sensu security update
An update for sensu is now available for Red Hat OpenStack Platform 12.0 Operational Tools for RHEL 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is availabl...