Zenoss Monitoring System 4.2.5-2108 (x64) - Persistent Cross-Site Scripting

Exploit Title: Stored XSS vulnerability in Zenoss core open source monitoring system Date: 12/05/2014 Exploit author: Dolev Farhi dolevatopenflare.org Vendor homepage: http://zenoss.com Software Link: http://www.zenoss.com Version: Core 4.2.5-2108 64bit Tested on: Kali Linux Vendor alerted:...

Zyxware Health Monitoring System - Multiple Vulnerabilities

No description provided by source. Exploit Title: Zyxware Health Monitoring System Multiple Vulnerability Google Dork: Inurl:maps/layers.php?bdywidth= and more Date: 07 Sep 2013 Vendor Homepage: http://www.zyxware.com/ Software Link: https://github.com/zyxware/Zyxware-Health-Monitoring-System/...

[oss-security] Zenoss Open Source monitoring System - Open Redirect & Stored XSS Vulnerabilities

hi, Several security issues were found in Zenoss monitoring system. 1. Stored XSS. A persistent XSS vulnerability was found in Zenoss core, by creating a malicious host with the Title scriptalert"Xss"/script any user browsing to the relevant manufacturers page will get a client-side script execut...

Google Project Shield to Protect Sensitive Sites from DDoS Attacks

DDoS attacks have been a problem for nearly as long as the Internet has been a thing, but they’re difficult to visualize and understand on a practical level. A whole bunch of traffic is going to a Web site. So what? Now, Google and Arbor Networks are collaborating on a project that shows exactly...

Zyxware Health Monitoring System - Multiple Vulnerabilities

Exploit for php platform in category web applications / \ / | / \ /000000 | 00 | /000000 | 00 \00/ / \ / \ / \ 00 \ / / \ / \ 00 \00/ / \ / | 00 \ 000000 |/000000 |000000 |0000000 |000000 0000 | 000000 | 00 \ /000000 |/0000000/ 000000 | / 00 |00 | 00/ / 00 |00 | 00 |00 | 00 | 00 | / 00 | 000000...

Zyxware Health Monitoring System - Multiple Vulnerabilities

Exploit Title: Zyxware Health Monitoring System Multiple Vulnerability Google Dork: Inurl:maps/layers.php?bdywidth= and more Date: 07 Sep 2013 Vendor Homepage: http://www.zyxware.com/ Software Link: https://github.com/zyxware/Zyxware-Health-Monitoring-System/ Version: Tested on: Win 7/Backtrack C...

Israel's Verint Systems get a contract from Indian government for interception program

Soon in December this year, India's new surveillance program - Centralized Monitoring System CMS will be able to analyze all telecommunications and Internet communications in India by the government and its agencies. This means that everything we say or text over the phone, write, post or browse...

Israel's Verint Systems get a contract from Indian government for interception program

Soon in December this year, India’s new surveillance program - Centralized Monitoring System CMS will be able to analyze all telecommunications and Internet communications in India by the government and its agencies. This means that everything we say or text over the phone, write, post or browse...

BlackBerry allows Indian government to Intercept emails and Chats

In 2010 the Indian authorities threatened to shut down BlackBerry's infrastructure unless it agreed to comply with lawful access requirements providing the government a way to intercept messages in order to prevent terrorist attacks. The long time dispute between the Indian government and...

Verax NMS Hardcoded Private Key

Verax NMS Hardcoded Private Key CVE-2013-1352 I. BACKGROUND ---------------------- Verax NMS provides a service-oriented, unified management & monitoring of networks, applications and infrastructure enabling quick problem detection, root-cause analysis, reporting and automating recovery, reducing...

Nagios 3 history.cgi Command Injection

Added: 01/28/2013 CVE: CVE-2012-6096 BID: 56879 OSVDB: 88322 Background Nagios is a network host and service monitoring and management system. Problem The Nagios history.cgi script is vulnerable to a stack overflow when parsing the host parameter. This may allow an attacker to execute arbitrary...

Debian DSA-2610-1 : ganglia - arbitrary script execution

Insufficient input sanitization in Ganglia, a web-based monitoring system, could lead to remote PHP script execution with permissions of the user running the web server. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The descriptive text and package checks in this plugin were extracted from...

Carlo Gavazzi EOS Box Multiple Vulnerabilities

Overview This advisory provides mitigation details for multiple vulnerabilities that impact the Carlo Gavazzi EOS-Box Photovoltaic Monitoring System. Carlo Gavazzi has identified two vulnerabilities in the Carlo Gavazzi EOS-Box Photovoltaic Monitoring System. Carlo Gavazzi has produced a firmware...

A web site security detection system of an EOP 0Day-vulnerability warning-the black bar safety net

Following last night found a website security monitoring system in the presence of a tasteless 0Day after, and just through pure manual way to discover its presence at an EOP 0Day the. This is my study of vulnerabilities for the first time since without the aid of the Fuzz of the case to find the...

Fedora Update for logwatch FEDORA-2011-2318

Check for the Version of logwatch OpenVAS Vulnerability Test Fedora Update for logwatch FEDORA-2011-2318 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Fedora Update for logwatch FEDORA-2011-2328

Check for the Version of logwatch OpenVAS Vulnerability Test Fedora Update for logwatch FEDORA-2011-2328 Authors: System Generated Check Copyright: Copyright c 2011 Greenbone Networks GmbH, http://www.greenbone.net This program is free software; you can redistribute it and/or modify it under the...

Pandora FMS Console Detection

The web console for Pandora FMS, an open source monitoring system, is running on the remote host. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid50860; scriptversion"1.11"; scriptsetattributeattribute:"pluginmodificationdate", value:"2022/10/12";...

Pandora Fms 3.1 - Blind SQL Injection

Pandora Fms 3.1 - Blind SQL Injection + Introduction Pandora FMS for Pandora Flexible Monitoring System is a software solution for monitoring computer networks. It allows monitoring in a visual way the status and performance of several parameters from different operating systems, servers,...

A way to upload aspxshell for the first-class surveillance system-vulnerability warning-the black bar safety net

Publisher:bincker Time:2010-1-24 The best monitoring system of all know what is going on, the main is to upload the data is filtered out, such as varchar, etc. characters. Yesterday the priest said that there is a monitoring system, can not upload the aspx,I tried the following asp the horse is t...

Ganglia Meta Daemon process_path Stack Buffer Overflow (CVE-2009-0241)

Ganglia is a scalable distributed monitoring system for high-performance computing systems such as clusters and Grids. It is based on a hierarchical design targeted at federations of clusters. It relies on a multicast-based listen/announce protocol to monitor state within clusters and uses a tree...