160 matches found
NetData Detection
Detection of NetData. The script sends a connection request to the server and attempts to detect NetData and to extract its version. Copyright C 2019 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it under the...
NetData < 1.11.0 Multiple Vulnerabilities
NetData is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:my-netdata:netdata"; ifdescription...
NetData <= 1.13.0 HTML Injection Vulnerability
NetData is prone to an HTML injection vulnerability. SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:my-netdata:netdata";...
Netdata Web application information disclosure vulnerability
Netdata Web application is a web-based host monitoring application. An information disclosure vulnerability exists in Netdata Web application version 1.10.0. The vulnerability arises from a configuration or other error in the operation of a network system or product. An unauthorized attacker coul...
Netdata Log Injection Vulnerability
Netdata is a real-time Linux performance monitoring tool. Netdata 1.10.0 suffers from a log injection vulnerability. The vulnerability can be exploited to conduct log injection attacks via the %0a sequence in the url parameter of api/v1/registry...
Netdata HTTP Header Injection Vulnerability
Netdata is a real-time Linux performance monitoring tool. Netdata 1.10.0 suffers from an HTTP Header injection vulnerability. An attacker can exploit this vulnerability via the api/v1/data filename parameter to perform HTTP Header injection attacks...
Netdata JSON Injection Vulnerability
Netdata is a real-time Linux performance monitoring tool. Netdata 1.10.0 suffers from a JSON injection vulnerability. An attacker can exploit this vulnerability to conduct JSON injection attacks via the api/v1/data tqx parameter...
CVE-2018-18836
An issue was discovered in Netdata 1.10.0. JSON injection exists via the api/v1/data tqx parameter because of webclientapirequestv1data in web/api/webapiv1.c...
CVE-2018-18837
An issue was discovered in Netdata 1.10.0. HTTP Header Injection exists via the api/v1/data filename parameter because of webclientapirequestv1data in web/api/webapiv1.c...
CVE-2018-18839
An issue was discovered in Netdata 1.10.0. Full Path Disclosure FPD exists via api/v1/alarms. NOTE: the vendor says "is intentional...
CVE-2018-18838
An issue was discovered in Netdata 1.10.0. Log Injection or Log Forgery exists via a %0a sequence in the url parameter to api/v1/registry...
DEBIAN-CVE-2018-18839
An issue was discovered in Netdata 1.10.0. Full Path Disclosure FPD exists via api/v1/alarms. NOTE: the vendor says "is intentional...
DEBIAN-CVE-2018-18838
An issue was discovered in Netdata 1.10.0. Log Injection or Log Forgery exists via a %0a sequence in the url parameter to api/v1/registry...
CVE-2018-18838
An issue was discovered in Netdata 1.10.0. Log Injection or Log Forgery exists via a %0a sequence in the url parameter to api/v1/registry...
DEBIAN-CVE-2018-18836
An issue was discovered in Netdata 1.10.0. JSON injection exists via the api/v1/data tqx parameter because of webclientapirequestv1data in web/api/webapiv1.c...
DEBIAN-CVE-2018-18837
An issue was discovered in Netdata 1.10.0. HTTP Header Injection exists via the api/v1/data filename parameter because of webclientapirequestv1data in web/api/webapiv1.c...
CVE-2018-18837
An issue was discovered in Netdata 1.10.0. HTTP Header Injection exists via the api/v1/data filename parameter because of webclientapirequestv1data in web/api/webapiv1.c...
CVE-2018-18839
An issue was discovered in Netdata 1.10.0. Full Path Disclosure FPD exists via api/v1/alarms. NOTE: the vendor says "is intentional...
CVE-2018-18837
An issue was discovered in Netdata 1.10.0. HTTP Header Injection exists via the api/v1/data filename parameter because of webclientapirequestv1data in web/api/webapiv1.c...
UBUNTU-CVE-2018-18837
An issue was discovered in Netdata 1.10.0. HTTP Header Injection exists via the api/v1/data filename parameter because of webclientapirequestv1data in web/api/webapiv1.c...