EUVD-2025-15590

Malicious code in bioql PyPI...

CVE-2025-47931 LibreNMS stored Cross-site Scripting vulnerability in poller group name

LibreNMS is PHP/MySQL/SNMP based network monitoring software. LibreNMS v25.4.0 and prior suffers from a Stored Cross-Site Scripting XSS Vulnerability in the group name parameter of the http://localhost/poller/groups form. This vulnerability allows attackers to inject malicious scripts into web...

CVE-2025-47931 LibreNMS stored Cross-site Scripting vulnerability in poller group name

LibreNMS is PHP/MySQL/SNMP based network monitoring software. LibreNMS v25.4.0 and prior suffers from a Stored Cross-Site Scripting XSS Vulnerability in the group name parameter of the http://localhost/poller/groups form. This vulnerability allows attackers to inject malicious scripts into web...

The vulnerability of the software for network monitoring and control of IT infrastructure on the SolarWinds Platform lies in its uncontrolled search algorithm, which allows attackers to escalate their privileges.

The vulnerability of the software for network monitoring and control of IT infrastructure on the SolarWinds Platform is related to an uncontrolled element in the search process. Exploiting this vulnerability could allow attackers to enhance their privileges...

The vulnerability of the Cacti network monitoring software lies in the lack of security measures taken to protect the structure of the web page. This allows attackers to execute cross-site scripting attacks.

The vulnerability of the Cacti network monitoring software exists due to the lack of measures taken to protect the structure of the web page. Exploiting this vulnerability allows a malicious actor to execute cross-site scripting using a specially crafted page...

The vulnerability of the software for network monitoring and control of IT infrastructure on the SolarWinds Platform lies in the lack of protective measures for the SQL query structure, allowing attackers to execute arbitrary SQL code.

The vulnerability of the software for network monitoring and control of IT infrastructure on the SolarWinds Platform is related to the lack of measures taken to protect the SQL query structure. Exploiting this vulnerability allows a malicious actor to execute arbitrary SQL code remotely...

The vulnerability of the software for network monitoring and control of IT infrastructure on the SolarWinds Platform, due to insufficient comparison, allows a hacker to execute arbitrary commands with privileged privileges.

The vulnerability of the software for network monitoring and control of IT infrastructure on the SolarWinds Platform is related to insufficient comparison. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute arbitrary commands with privileged privileges...

The vulnerability of the pollers.php script, a network monitoring software, allows a hacker to execute arbitrary code.

The vulnerability of the pollers.php script, a network monitoring software, is related to the lack of protection for the SQL query structure. Exploiting this vulnerability allows an attacker to execute arbitrary code remotely...

Progress Software WhatsUp Gold Cross-Site Scripting Vulnerability

Progress Software WhatsUp Gold is a network monitoring software from Progress Software, Inc. It is used to monitor the entire network infrastructure as well as applications, configurations and network traffic. A security vulnerability previously existed in Progress Software WhatsUp Gold version...

The vulnerability of the SolarWinds Orion Platform’s network monitoring software lies in its deserialization mechanism flaws, which allows a hacker to execute arbitrary commands from the web console.

The vulnerability of the SolarWinds Orion Platform’s network monitoring software is related to deficiencies in the deserialization mechanism. Exploiting this vulnerability could allow a remote attacker to execute arbitrary commands from the web console...

The vulnerability of the SolarWinds Orion Platform’s network monitoring software lies in the use of dangerous methods or functions, allowing a malicious actor to execute arbitrary commands with privileges of NETWORK SERVICE.

The vulnerability of the SolarWinds Orion Platform’s network monitoring software is related to the use of dangerous methods or functions. Exploiting this vulnerability could allow a hacker to execute arbitrary commands with privileges of NETWORK SERVICE...

Critical Security Flaws Exposed in Nagios XI Network Monitoring Software

Multiple security flaws have been disclosed in the Nagios XI network monitoring software that could result in privilege escalation and information disclosure. The four security vulnerabilities, tracked from CVE-2023-40931 through CVE-2023-40934, impact Nagios XI versions 5.11.1 and lower. Followi...

The vulnerability of the SolarWinds Orion Platform’s network monitoring software, related to improper code generation management, allows a intruder to execute arbitrary commands.

The vulnerability of the SolarWinds Orion Platform’s network monitoring software lies in improper code generation management. Exploiting this vulnerability allows a remote attacker to execute arbitrary commands...

LiveAction LiveSP 跨站脚本漏洞

LiveAction LiveSP is a network monitoring software for service providers from LiveAction. A security vulnerability exists in LiveAction LiveSP version v21.1.2. An attacker can exploit the vulnerability to execute arbitrary web script or HTML...

ZOHO ManageEngine OpManager SQL Injection Vulnerability (CNVD-2022-70603)

ZOHO ManageEngine OpManager is a comprehensive network monitoring software from ZOHO USA. A SQL injection vulnerability exists in versions prior to ZOHO ManageEngine OpManager 125588 and 125603, which stems from a problem in the inventory reporting module. An attacker could use this vulnerability...

Zoho Corporation ManageEngine OpManager Licensing Issue Vulnerability

Zoho Corporation ManageEngine OpManager is a comprehensive network monitoring software from Zoho Corporation, USA. Zoho Corporation ManageEngine OpManager is vulnerable to an authorization issue that could be exploited by an unauthenticated attacker to access the audit directory...

The vulnerability of the SaveUserSetting component in the SolarWinds Orion Platform software monitoring solution allows a hacker to elevate their privileges to the level of an administrator.

The vulnerability of the SaveUserSetting component in the SolarWinds Orion Platform software-related network monitoring system is related to deficiencies in access control and insecure management of privileges. Exploiting this vulnerability could allow a malicious actor to elevate their privilege...

Zoho Corporation ManageEngine OpManager 授权问题漏洞

Zoho Corporation ManageEngine OpManager is a comprehensive network monitoring software from Zoho Corporation, USA. Zoho Corporation ManageEngine OpManager is vulnerable to an authorization issue that could be exploited by an unauthenticated attacker to access the audit directory...

Design/Logic Flaw

In AnyView network police network monitoring software 4.6.0.1, there is a local denial of service vulnerability in AnyView, attackers can use a constructed program to cause a computer crash BSOD...

CVE-2020-23741

CVE-2020-23741 affects AnyView (network police) network monitoring software 4.6.0.1. A local DoS vulnerability allows a crafted program to crash the host (BSOD). Root cause details are not provided in the available documents; no remediation or exploit information is specified in the provided sour...