2 matches found
CVE-2009-1797
The CVE-2009-1797 issue affects the APC Network Management Card (NMC) web interface used in APC UPS/Rack PDU products. It describes cross‑site request forgery (CSRF) vulnerabilities that can allow an attacker to hijack a user’s session and perform actions such as creating new administrative users...
CVE-2009-1798
CVE-2009-1798 refers to multiple cross-site scripting (XSS) vulnerabilities in the APC Network Management Card (NMC) used in APC Switched Rack PDU devices. The issue is that the NMC web interface does not adequately validate user-supplied data, allowing remote attackers to inject arbitrary web sc...