Whatsup Professional Security Vulnerabilities and Issues — Whatsup Professional CVE List

Lucene search

IpswitchWhatsup Professional

5 matches found

CVE•added 2006/05/15 10:2 a.m.•42 views

CVE-2006-2353

NmConsole/DeviceSelection.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to redirect users to other websites via the (1) sCancelURL and possibly (2) sRedirectUrl parameters.

5CVSS6.6AI score0.00132EPSS

CVE•added 2006/05/15 10:2 a.m.•37 views

CVE-2006-2356

NmConsole/utility/RenderMap.asp in Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain sensitive information about network nodes via a modified nDeviceGroupID parameter.

5CVSS6.1AI score0.00376EPSS

CVE•added 2006/05/15 10:2 a.m.•36 views

CVE-2006-2355

Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium allows remote attackers to obtain full path information via 404 error messages. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

5CVSS6.3AI score0.01402EPSS

CVE•added 2006/05/15 10:2 a.m.•34 views

CVE-2006-2357

Ipswitch WhatsUp Professional 2006 and WhatsUp Professional 2006 Premium allows remote attackers to obtain source code for scripts via a trailing dot in a request to NmConsole/Login.asp.

5CVSS6.6AI score0.0025EPSS

CVE•added 2006/05/15 10:2 a.m.•31 views

CVE-2006-2354

NmConsole/Login.asp in Ipswitch WhatsUp Professional 2006 and Ipswitch WhatsUp Professional 2006 Premium generates different error messages in a way that allows remote attackers to enumerate valid usernames. NOTE: the provenance of this information is unknown; the details are obtained solely from t...

5CVSS6.3AI score0.00205EPSS