Lucene search
K

6 matches found

CNVD
CNVD
added 2022/02/28 12:0 a.m.18 views

Checkmk Cross-Site Scripting Vulnerability (CNVD-2022-71406)

Checkmk is an editor. A cross-site scripting vulnerability exists in Checkmk versions 2.0.0p19 and earlier and 1.6.0p27 and earlier. The vulnerability stems from the failure to properly escape the title of a predefined condition when displayed as a condition, which can be exploited by attackers t...

5.4CVSS3.2AI score0.00563EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2022/02/24 3:15 p.m.35 views

CVE-2022-24566

In Checkmk =2.0.0p19 fixed in 2.0.0p20 and Checkmk =1.6.0p27 fixed in 1.6.0p28, the title of a Predefined condition is not properly escaped when shown as condition, which can result in Cross Site Scripting XSS...

5.4CVSS6.1AI score0.00563EPSS
Exploits0References2
CNVD
CNVD
added 2022/02/23 12:0 a.m.18 views

Checkmk Cross-Site Scripting Vulnerability (CNVD-2022-21231)

Checkmk is an editor. A cross-site scripting vulnerability exists in Checkmk, which stems from Checkmk version = 2.0.0p19. When creating or editing user properties, Help Text is affected by HTML injection, which can be triggered when editing a user. An attacker could use this vulnerability to...

6.1CVSS1.5AI score0.00661EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/02/22 12:0 a.m.9 views

PT-2022-16721 · Checkmk +1 · Checkmk +1

Name of the Vulnerable Software and Affected Versions: Checkmk versions 1.6.0p27 and earlier Checkmk versions 2.0.0p19 and earlier Description: The issue is related to a Cross Site Scripting XSS vulnerability. It occurs because the Alias of a site is not properly escaped when shown as a condition...

6.1CVSS5.3AI score0.12134EPSS
Exploits9References21
Positive Technologies
Positive Technologies
added 2022/02/21 12:0 a.m.5 views

PT-2022-16720 · Checkmk · Checkmk

Name of the Vulnerable Software and Affected Versions: Checkmk versions 2.0.0p19 and earlier Description: The issue concerns a Cross Site Scripting XSS vulnerability. It occurs when creating or editing a user attribute, where the Help Text is subject to HTML injection. This can be triggered when...

6.1CVSS6.6AI score0.00661EPSS
Exploits0References4
CNNVD
CNNVD
added 2022/02/21 12:0 a.m.6 views

Checkmk 跨站脚本漏洞

Checkmk is an editor. A cross-site scripting vulnerability exists in Checkmk, which stems from Checkmk version = 2.0.0p19. When creating or editing user properties, Help Text is affected by HTML injection, which can be triggered when editing a user. An attacker could use this vulnerability to...

6.1CVSS5.3AI score0.00661EPSS
Exploits0References3
Rows per page
Query Builder