3 matches found
Zenoss Monitoring System 4.2.5-2108 64bit - Stored XSS Vulnerability
Cross-site scripting XSS vulnerability in Zenoss 4.2.5 allows remote attackers to inject arbitrary web script or HTML via the title of a device. Exploit Title: Stored XSS vulnerability in Zenoss core open source monitoring system Date: 12/05/2014 Exploit author: Dolev Farhi dolevatopenflare.org...
Zenoss Monitoring System 4.2.5-2108 (x64) - Persistent Cross-Site Scripting
Exploit Title: Stored XSS vulnerability in Zenoss core open source monitoring system Date: 12/05/2014 Exploit author: Dolev Farhi dolevatopenflare.org Vendor homepage: http://zenoss.com Software Link: http://www.zenoss.com Version: Core 4.2.5-2108 64bit Tested on: Kali Linux Vendor alerted:...
[oss-security] Zenoss Open Source monitoring System - Open Redirect & Stored XSS Vulnerabilities
hi, Several security issues were found in Zenoss monitoring system. 1. Stored XSS. A persistent XSS vulnerability was found in Zenoss core, by creating a malicious host with the Title scriptalert"Xss"/script any user browsing to the relevant manufacturers page will get a client-side script execut...