14 matches found
EUVD-2020-3907
Malware in sbrugna...
CVE-2020-11553
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF...
Castle Rock Computing SNMPc Online suffers from an unspecified vulnerability (CNVD-2020-22331)
Castle Rock Computing SNMPc Online is an advanced reporting plug-in for SNMPc Enterprise Network Manager from Castle Rock Computing, USA. An unspecified vulnerability exists in Castle Rock Computing SNMPc Online. An attacker could exploit the vulnerability to obtain sensitive credential informati...
Castle Rock Computing SNMPc Online has an Unspecified Vulnerability
Castle Rock Computing SNMPc Online is an advanced reporting plug-in for SNMPc Enterprise Network Manager from Castle Rock Computing, USA. Castle Rock Computing SNMPc Online suffers from an unspecified vulnerability that originates from a cookie value with a username and password in plaintext form...
Castle Rock Computing SNMPc Online Cross-Site Scripting Vulnerability
Castle Rock Computing SNMPc Online is an advanced reporting plug-in for SNMPc Enterprise Network Manager from Castle Rock Computing, USA. A cross-site scripting vulnerability exists in Castle Rock Computing SNMPc Online. The vulnerability stems from a lack of proper validation of client data by t...
CVE-2020-11554
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive information via info.php4...
CVE-2020-11555
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive credential information from backup files...
CVE-2020-11553
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF...
Code injection
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It allows remote attackers to obtain sensitive credential information from backup files...
CVE-2020-11553
Castle Rock SNMPc Online 12.10.10 (before 2020-01-28) is affected by a cross-site request forgery (CSRF) flaw in its web application. The vulnerability stems from insufficient validation that requests originate from a trusted user, allowing an attacker to trick an authenticated user into sending ...
CVE-2020-11553
An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. There is pervasive CSRF...
CVE-2020-11555
CVE-2020-11555 affects Castle Rock SNMPc Online 12.10.10 (pre-2020-01-28). The connected sources confirm a vulnerability that allows remote attackers to obtain sensitive credential information from backup files. The issue is documented across multiple feeds (Red Hat, CNVD, CVE lists) with consist...
CVE-2020-11556
Castle Rock SNMPc Online 12.10.10 (before 2020-01-28) contains multiple persistent and reflected XSS vulnerabilities in the WEB application due to lack of proper validation of client data. The issues are documented across CVE/NVD and CNVD-style records; impact is client-side code execution via XS...
CVE-2020-11557
Castle Rock SNMPc Online 12.10.10 (before 2020-01-28) is affected by a vulnerability where username and password values are included in cleartext within each request’s cookie value. This cookie exposure could reveal credentials to an attacker who can observe traffic or gain access to cookies. Con...