Open Source Security Information Management Security Vulnerabilities and Issues — Open Source Security Information Management CVE List

Lucene search

AlienvaultOpen Source Security Information Management

3 matches found

CVE•added 2013/10/09 2:54 p.m.•42 views

CVE-2013-5967

Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.3 and earlier allow remote attackers to execute arbitrary SQL commands via the date_from parameter to (1) radar-iso27001-potential.php, (2) radar-iso27001-A12IS_acquisition-pot.php, (3) radar-...

7.5CVSS8.8AI score0.00304EPSS

Web

CVE•added 2013/08/20 2:56 p.m.•37 views

CVE-2013-5321

Multiple SQL injection vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) 4.1 allow remote attackers to execute arbitrary SQL commands via the (1) sensor parameter in a Query action to forensics/base_qry_main.php; the (2) tcp_flags[] or (3) tcp_port[0][4] parameter to...

7.5CVSS8.7AI score0.00675EPSS

Web

CVE•added 2013/08/15 8:55 p.m.•32 views

CVE-2013-5300

Multiple cross-site scripting (XSS) vulnerabilities in AlienVault Open Source Security Information Management (OSSIM) before 4.3.0 allow remote attackers to inject arbitrary web script or HTML via the withoutmenu parameter to (1) vulnmeter/index.php or (2) vulnmeter/sched.php; the (3) section param...

4.3CVSS5.9AI score0.00686EPSS

Web