6 matches found
Checkmk Cross-Site Scripting Vulnerability (CNVD-2022-71406)
Checkmk is an editor. A cross-site scripting vulnerability exists in Checkmk versions 2.0.0p19 and earlier and 1.6.0p27 and earlier. The vulnerability stems from the failure to properly escape the title of a predefined condition when displayed as a condition, which can be exploited by attackers t...
CVE-2022-24566
In Checkmk =2.0.0p19 fixed in 2.0.0p20 and Checkmk =1.6.0p27 fixed in 1.6.0p28, the title of a Predefined condition is not properly escaped when shown as condition, which can result in Cross Site Scripting XSS...
Checkmk Cross-Site Scripting Vulnerability (CNVD-2022-21231)
Checkmk is an editor. A cross-site scripting vulnerability exists in Checkmk, which stems from Checkmk version = 2.0.0p19. When creating or editing user properties, Help Text is affected by HTML injection, which can be triggered when editing a user. An attacker could use this vulnerability to...
PT-2022-16721 · Checkmk +1 · Checkmk +1
Name of the Vulnerable Software and Affected Versions: Checkmk versions 1.6.0p27 and earlier Checkmk versions 2.0.0p19 and earlier Description: The issue is related to a Cross Site Scripting XSS vulnerability. It occurs because the Alias of a site is not properly escaped when shown as a condition...
PT-2022-16720 · Checkmk · Checkmk
Name of the Vulnerable Software and Affected Versions: Checkmk versions 2.0.0p19 and earlier Description: The issue concerns a Cross Site Scripting XSS vulnerability. It occurs when creating or editing a user attribute, where the Help Text is subject to HTML injection. This can be triggered when...
Checkmk 跨站脚本漏洞
Checkmk is an editor. A cross-site scripting vulnerability exists in Checkmk, which stems from Checkmk version = 2.0.0p19. When creating or editing user properties, Help Text is affected by HTML injection, which can be triggered when editing a user. An attacker could use this vulnerability to...