10 matches found
EUVD-2019-7570
Malware in sbrugna...
CVE-2025-29513
Cross-Site Scripting XSS vulnerability in NodeBB v4.0.4 and before allows remote attackers to store arbitrary code in the admin API Access token generator...
CVE-2025-29513
Cross-Site Scripting XSS vulnerability in NodeBB v4.0.4 and before allows remote attackers to store arbitrary code in the admin API Access token generator...
Centreon Security Feature Issue Vulnerability
Centreon Merethis Centreon is an open source IT monitoring software package from Centreon France that needs to be used with Nagios. The software enables the management of Nagios via the Web, as well as the monitoring of networks, operating systems and applications via third-party components. A...
CVE-2019-17105
The token generator in index.php in Centreon Web before 2.8.27 is predictable...
CVE-2019-17105
The token generator in index.php in Centreon Web before 2.8.27 is predictable...
Code injection
The token generator in index.php in Centreon Web before 2.8.27 is predictable...
CVE-2019-17105
Centreon Web prior to 2.8.27 is affected by CVE-2019-17105 where the token generator in index.php is predictable. The issue is documented as a predictable token generator, enabling potential token guessing that could enable unauthorized access or session-related abuse. Connected sources also desc...
CVE-2019-17105
The token generator in index.php in Centreon Web before 2.8.27 is predictable...
MySQL Enterprise Monitor < 2.3.20 Apache Struts Predictable Token XSRF
According to its self-reported version, the MySQL Enterprise Monitor running on the remote host may be affected by a cross-site request forgery vulnerability due to the token generator failing to adequately randomize the token values. A remote attacker can exploit this by extracting a token from ...