Lucene search
K

603 matches found

Cvelist
Cvelist
added 2007/11/08 2:0 a.m.22 views

CVE-2007-5891

Multiple cross-site scripting XSS vulnerabilities in jsp/Login.do in ManageEngine OpManager MSP Edition and OpManager 7.0 allow remote attackers to inject arbitrary web script or HTML via the 1 requestid, 2 fileid, 3 woMode, and 2 woID parameters. NOTE: the provenance of this information is...

5.7AI score0.01033EPSS
Exploits0References4
CVE
CVE
added 2007/11/08 2:0 a.m.52 views

CVE-2007-5891

ManageEngine OpManager MSP Edition and OpManager 7.0 are affected by multiple XSS vulnerabilities in jsp/Login.do, exploitable via the requestid, fileid, woMode, and woID parameters. The root cause is inadequate input sanitization in the Login.do script, allowing an unauthenticated, remote attack...

4.3CVSS5.7AI score0.01033EPSS
Exploits0References4Affected Software2
Tenable Nessus
Tenable Nessus
added 2007/11/07 12:0 a.m.57 views

ManageEngine OpManager Login.do Multiple Parameter XSS

The remote host is running ManageEngine OpManager, a web-based network management application. The version of ManageEngine OpManager installed on the remote host fails to sanitize user input to the 'requestid' parameter of the 'jsp/Login.do' script before using it to generate dynamic content. An...

4.3CVSS5.8AI score0.01033EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2007/07/07 12:0 a.m.26 views

netflow-xss.txt

NetFlow Analizer 5 & OpManager 7 multiple XSS vendor url:http://www.adventnet.com/ advisore:http://lostmon.blogspot.com/2007/07/ netflow-analizer-5-opmanager-7-multiple.html vendor notify:yes exploits include:yes NetFlow Analizer and OpManager contains a flaw that allows a remote cross site...

7.4AI score
Exploits0
Prion
Prion
added 2007/07/06 6:30 p.m.17 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in AdventNet ManageEngine OpManager 6 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter in a ping.do and b traceRoute.do in map/; the 2 reportName, 3 displayName, and 4 selectedNode parameters to c...

2.6CVSS5.9AI score0.05766EPSS
Exploits1References13Affected Software1
NVD
NVD
added 2007/07/06 6:30 p.m.16 views

CVE-2007-3594

Multiple cross-site scripting XSS vulnerabilities in AdventNet ManageEngine OpManager 6 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter in a ping.do and b traceRoute.do in map/; the 2 reportName, 3 displayName, and 4 selectedNode parameters to c...

2.6CVSS5.7AI score0.05766EPSS
Exploits1References13
Cvelist
Cvelist
added 2007/07/06 6:0 p.m.23 views

CVE-2007-3594

Multiple cross-site scripting XSS vulnerabilities in AdventNet ManageEngine OpManager 6 and 7 allow remote attackers to inject arbitrary web script or HTML via the 1 name parameter in a ping.do and b traceRoute.do in map/; the 2 reportName, 3 displayName, and 4 selectedNode parameters to c...

5.7AI score0.05766EPSS
Exploits1References13
CVE
CVE
added 2007/07/06 6:0 p.m.63 views

CVE-2007-3594

CVE-2007-3594 (OpManager) describes multiple cross-site scripting (XSS) vulnerabilities in ManageEngine OpManager 6 and 7. The issue allows remote attackers to inject arbitrary web script or HTML through several parameters across different URLs: (a) name in map/ping.do and map/traceRoute.do; (b) ...

2.6CVSS5.7AI score0.05766EPSS
Exploits1References13Affected Software1
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.14 views

OpManager 67 - adminServiceConfiguration.do?Operation Cross-Site Scripting

OpManager 67 - adminServiceConfiguration.do?Operation Cross-Site Scripting source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to...

6.8AI score
Exploits0
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.25 views

OpManager 67 - reportsReportViewAction.do Multiple Cross-Site Scripting Vulnerabilities

OpManager 67 - reportsReportViewAction.do Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage thes...

0.2AI score
Exploits0
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.13 views

OpManager 67 - ping.do?name Cross-Site Scripting

OpManager 67 - ping.do?name Cross-Site Scripting source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script co...

Exploits0
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.18 views

OpManager 67 - adminDeviceAssociation.do Multiple Cross-Site Scripting Vulnerabilities

OpManager 67 - adminDeviceAssociation.do Multiple Cross-Site Scripting Vulnerabilities source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these...

0.1AI score
Exploits0
exploitpack
exploitpack
added 2007/07/04 12:0 a.m.13 views

OpManager 67 - traceRoute.do?name Cross-Site Scripting

OpManager 67 - traceRoute.do?name Cross-Site Scripting source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary...

Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.21 views

OpManager 6/7 - 'admin/ServiceConfiguration.do?Operation' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.20 views

OpManager 6/7 - 'ping.do?name' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.21 views

OpManager 6/7 - '/admin/DeviceAssociation.do' Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.26 views

OpManager 6/7 - reports/ReportViewAction.do Multiple Cross-Site Scripting Vulnerabilities

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2007/07/04 12:0 a.m.17 views

OpManager 6/7 - 'traceRoute.do?name' Cross-Site Scripting

source: https://www.securityfocus.com/bid/24767/info OpManager is prone to multiple cross-site scripting vulnerabilities because it fails to properly sanitize user-supplied input. An attacker may leverage these issues to execute arbitrary script code in the browser of an unsuspecting user in the...

7.4AI score
Exploits0
NVD
NVD
added 2006/05/12 5:6 p.m.23 views

CVE-2006-2343

Cross-site scripting XSS vulnerability in Search.do in ManageEngine OpManager 6.0 allows remote attackers to inject arbitrary web script or HTML via the searchTerm parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

5.8CVSS5.5AI score0.0118EPSS
Exploits0References4
Prion
Prion
added 2006/05/12 5:6 p.m.25 views

Cross site scripting

Cross-site scripting XSS vulnerability in Search.do in ManageEngine OpManager 6.0 allows remote attackers to inject arbitrary web script or HTML via the searchTerm parameter. NOTE: the provenance of this information is unknown; the details are obtained from third party information...

5.8CVSS5.8AI score0.0118EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder