NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Map.php hde parameter. Date published : 2020-07-07 https://gist.github.com/sudoninja-noob/c1722c118abc7a562a9a0de726266a19 https://www.nedi.ch/download/
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Setup.php tet parameter. Date published : 2020-07-07 https://gist.github.com/p4nk4jv/68ae8b773dbea6d8769295ba96d9f1e3 https://www.nedi.ch/download/
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the snmpget.php ip parameter. Date published : 2020-07-07 https://gist.github.com/p4nk4jv/68ae8b773dbea6d8769295ba96d9f1e3 https://www.nedi.ch/download/
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Monitoring-Incidents.php id parameter. Date published : 2020-07-07 https://gist.github.com/p4nk4jv/68ae8b773dbea6d8769295ba96d9f1e3 https://www.nedi.ch/download/
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php chg parameter. Date published : 2020-07-07 https://gist.github.com/p4nk4jv/68ae8b773dbea6d8769295ba96d9f1e3 https://www.nedi.ch/download/
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Routes.php rtr parameter. Date published : 2020-07-07 https://gist.github.com/p4nk4jv/68ae8b773dbea6d8769295ba96d9f1e3 https://www.nedi.ch/download/
NeDi 1.9C is vulnerable to cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Assets-Management.php sn parameter. Date published : 2020-07-07 https://gist.github.com/p4nk4jv/68ae8b773dbea6d8769295ba96d9f1e3 https://www.nedi.ch/download/
NeDi 1.9C is vulnerable to a cross-site scripting (XSS) attack. The application allows an attacker to execute arbitrary JavaScript code via the Topology-Map.php xo parameter. Date published : 2020-07-07 https://gist.github.com/p4nk4jv/68ae8b773dbea6d8769295ba96d9f1e3 https://www.nedi.ch/download/
A SQLi exists in the probe code of all Connectwise Automate versions before 2020.7 or 2019.12. A SQL Injection in the probe implementation to save data to a custom table exists due to inadequate...
Gossipsub 1.0 does not properly resist invalid message spam, such as an eclipse attack or a sybil attack. Date published : 2020-07-07 https://gateway.ipfs.io/ipfs/QmPWuNBs8h6a8KamRvGqhTq5UDYJRQsEEy37zDKjujQQQm/Gossipsub%20Evaluation%20Report.pdf https://github.com/ipfs/blog/pull/450
Code42 environments with on-premises server versions 7.0.4 and earlier allow for possible remote code execution. When an administrator creates a local (non-SSO) user via a Code42-generated email, the administrator has the option to modify...
The O2 Business application 1.2.0 for Android exposes the canvasm.myo2.SplashActivity activity to other applications. The purpose of this activity is to handle deeplinks that can be delivered either via links or by directly calling...
A flaw was found in all Samba versions before 4.10.17, before 4.11.11 and before 4.12.4 in the way it processed NetBios over TCP/IP. This flaw allows a remote attacker could to cause the Samba...
A NULL pointer dereference, or possible use-after-free flaw was found in Samba AD LDAP server in versions before 4.10.17, before 4.11.11 and before 4.12.4. Although some versions of Samba shipped with Red Hat Enterprise...