CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

4 matches found

NVD•added 2013/06/17 11:38 a.m.•15 views

CVE-2013-1097

Cross-site scripting XSS vulnerability in a ZCC page in njwc.jar in Novell ZENworks Configuration Management ZCM 11.2 before 11.2.3a Monthly Update 1 allows remote attackers to inject arbitrary web script or HTML via vectors involving an onload event...

4.3CVSS5.6AI score0.00675EPSS

Exploits0References3

Prion•added 2013/06/17 11:38 a.m.•17 views

Cross site scripting

4.3CVSS6AI score0.00675EPSS

Exploits0References3Affected Software1

CVE•added 2013/06/17 10:0 a.m.•46 views

CVE-2013-1097

CVE-2013-1097 is an XSS vulnerability affecting Novell ZENworks Configuration Management (ZCM) 11.2 prior to 11.2.3a Monthly Update 1, in the njwc.jar ZCC page. The vulnerability allows remote attackers to inject arbitrary web script or HTML via vectors involving an onload event. There is no expl...

4.3CVSS5.8AI score0.00675EPSS

Exploits0References3Affected Software1

CVE•added 2013/06/17 10:0 a.m.•43 views

CVE-2013-1095

CVE-2013-1095 concerns a cross-site scripting (XSS) vulnerability in the ZENworks Configuration Management (ZCM) 11.2 line, specifically in a ZCC page within njwc.jar. The issue arises from improper validation of onError-event input, allowing remote attackers to inject arbitrary web script or HTM...

4.3CVSS5.8AI score0.00675EPSS

Exploits0References3Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by