Lucene search
K

153 matches found

NVD
NVD
added 2012/07/09 6:55 p.m.17 views

CVE-2012-3859

Unspecified vulnerability in the WebAdmin Portal in Netsweeper has unknown impact and attack vectors, a different vulnerability than CVE-2012-2446 and CVE-2012-2447...

10CVSS6.3AI score0.02917EPSS
Exploits5References1
NVD
NVD
added 2012/07/09 6:55 p.m.18 views

CVE-2012-2446

Cross-site scripting XSS vulnerability in tools/locallookup.php in the WebAdmin Portal in Netsweeper allows remote attackers to inject arbitrary web script or HTML via the group parameter in a lookup action...

4.3CVSS5.5AI score0.01058EPSS
Exploits6References2
Prion
Prion
added 2012/07/09 6:55 p.m.18 views

Cross site scripting

Cross-site scripting XSS vulnerability in tools/locallookup.php in the WebAdmin Portal in Netsweeper allows remote attackers to inject arbitrary web script or HTML via the group parameter in a lookup action...

4.3CVSS5.9AI score0.01058EPSS
Exploits7References2
Prion
Prion
added 2012/07/09 6:55 p.m.18 views

Cross site request forgery (csrf)

Cross-site request forgery CSRF vulnerability in accountmgr/adminupdate.php in the WebAdmin Portal in Netsweeper allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via an add action...

6.8CVSS7.2AI score0.01058EPSS
Exploits7References2
NVD
NVD
added 2012/07/09 6:55 p.m.20 views

CVE-2012-2447

Cross-site request forgery CSRF vulnerability in accountmgr/adminupdate.php in the WebAdmin Portal in Netsweeper allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via an add action...

6.8CVSS6.9AI score0.00675EPSS
Exploits6References2
Prion
Prion
added 2012/07/09 6:55 p.m.16 views

Design/Logic Flaw

Unspecified vulnerability in the WebAdmin Portal in Netsweeper has unknown impact and attack vectors, a different vulnerability than CVE-2012-2446 and CVE-2012-2447...

10CVSS6.7AI score0.02917EPSS
Exploits7References1
Cvelist
Cvelist
added 2012/07/09 6:0 p.m.38 views

CVE-2012-2447

Cross-site request forgery CSRF vulnerability in accountmgr/adminupdate.php in the WebAdmin Portal in Netsweeper allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via an add action...

6.9AI score0.00675EPSS
Exploits6References2
Cvelist
Cvelist
added 2012/07/09 6:0 p.m.35 views

CVE-2012-2446

Cross-site scripting XSS vulnerability in tools/locallookup.php in the WebAdmin Portal in Netsweeper allows remote attackers to inject arbitrary web script or HTML via the group parameter in a lookup action...

5.5AI score0.01058EPSS
Exploits6References2
CVE
CVE
added 2012/07/09 6:0 p.m.47 views

CVE-2012-3859

CVE-2012-3859 is identified in the connected documents as a SQL Injection vulnerability affecting the Netsweeper WebAdmin Portal. The Red Hat entry describes it as an unspecified vulnerability with unknown impact, and the exploit references (Exploit-DB/PacketStorm) associate this CVE with a SQL I...

10CVSS6.4AI score0.02917EPSS
Exploits5References1Affected Software1
CVE
CVE
added 2012/07/09 6:0 p.m.51 views

CVE-2012-2447

CVE-2012-2447 is a CSRF flaw in the Netsweeper WebAdmin Portal, specifically in accountmgr/adminupdate.php. The vulnerability allows an attacker to hijack an administrator’s session and perform actions that create new administrative accounts via the add action. Public materials in the connected R...

6.8CVSS7.1AI score0.00675EPSS
Exploits6References2Affected Software1
CVE
CVE
added 2012/07/09 6:0 p.m.51 views

CVE-2012-2446

CVE-2012-2446 is a real XSS vulnerability in Netsweeper’s WebAdmin Portal. The issue affects the WebAdmin Portal’s tools/local_lookup.php, where the group parameter in a lookup action can be exploited to inject arbitrary web script or HTML remotely. The root cause is an inadequate input validatio...

4.3CVSS5.6AI score0.01058EPSS
Exploits6References2Affected Software1
Cvelist
Cvelist
added 2012/07/09 6:0 p.m.29 views

CVE-2012-3859

Unspecified vulnerability in the WebAdmin Portal in Netsweeper has unknown impact and attack vectors, a different vulnerability than CVE-2012-2446 and CVE-2012-2447...

6.2AI score0.02917EPSS
Exploits5References1
CERT
CERT
added 2012/07/09 12:0 a.m.31 views

Netsweeper Internet Filter WebAdmin Portal multiple vulnerabilities

Overview Netsweeper Internet Filter WebAdmin Portal contains XSS, CSRF and SQLi vulnerabilities. Description Netsweeper Internet Filter's WebAdmin Portal contains the following XSS, CSRF and SQLi vulnerabilities.CWE-79: Improper Neutralization of Input During Web Page Generation 'Cross-site...

10CVSS8.2AI score0.02917EPSS
Exploits7References5
Rows per page
Query Builder