3 matches found
Ipswitch WhatsUp Professional 2006 0 NmConsole/ToolResults.asp sHostname Parameter XSS
No description provided by source. source: http://www.securityfocus.com/bid/17964/info WhatsUp Professional is prone to multiple input-validation vulnerabilities. The issues include remote file-include, information-disclosure, source-code disclosure, cross-site scripting, and input-validation...
CVE-2006-2351
Multiple cross-site scripting XSS vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote attackers to inject arbitrary web script or HTML via the 1 sDeviceView or 2 nDeviceID parameter to a NmConsole/Navigation.asp or 3 sHostname parameter to b...
CVE-2006-2351
Multiple cross-site scripting XSS vulnerabilities in IPswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allow remote attackers to inject arbitrary web script or HTML via the 1 sDeviceView or 2 nDeviceID parameter to a NmConsole/Navigation.asp or 3 sHostname parameter to b...