4 matches found
CVE-2018-18552
CVE-2018-18552 affects ServersCheck Monitoring Software up to version 14.3.3. The vulnerability is a Directory Traversal flaw via the sensor_details.html id parameter, enabling an attacker with local access to cause a denial of service (menu functionality loss) by creating empty files in arbitrar...
CVE-2017-17832
ServersCheck Monitoring Software prior to 14.2.3 is affected by a cross-site scripting (XSS) vulnerability. The issue arises because user-supplied data passed in the settings_SMS_ALERT_TYPE parameter is not validated/sanitized, allowing JavaScript to be executed on the Settings - SMS Alerts page ...
CVE-2018-18551
The CVE-2018-18551 entry concerns ServersCheck Monitoring Software (through version 14.3.3). The vulnerability is a combination of Persistent and Reflected Cross-Site Scripting (XSS) affecting multiple endpoints and parameters (e.g., sensors.html status/type/device, report.html location, group_de...
CVE-2005-1798
CVE-2005-1798 affects ServersCheck Monitoring Software versions 5.9.0–5.10.0. The vulnerability is a directory traversal that allows a remote attacker to read arbitrary files via dot-dot sequences in an HTTP request. According to the NVD entry, the impact is partial confidentiality with no integr...