CVE-2011-1716
Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in Xymon before 4.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
| Software | From | Fixed in |
|---|---|---|
| xymon / xymon | 4.3.0-rc1 | 4.3.0-rc1.x |
| xymon / xymon | 4.0 | 4.0.x |
| xymon / xymon | 4.1.1 | 4.1.1.x |
| xymon / xymon | - | - |
| xymon / xymon | 4.2.2 | 4.2.2.x |
| xymon / xymon | 4.0.2 | 4.0.2.x |
| xymon / xymon | 4.2.3 | 4.2.3.x |
| xymon / xymon | 4.3.0-beta3 | 4.3.0-beta3.x |
| xymon / xymon | 4.3.0-beta2 | 4.3.0-beta2.x |
| xymon / xymon | 4.1.0 | 4.1.0.x |
| xymon / xymon | 4.1.2-p1 | 4.1.2-p1.x |
| xymon / xymon | 4.2.0 | 4.2.0.x |
| xymon / xymon | 4.0.4 | 4.0.4.x |
| xymon / xymon | - | 4.3.0.x |
| xymon / xymon | 4.3.0-beta1 | 4.3.0-beta1.x |
| xymon / xymon | 4.1.2 | 4.1.2.x |
| xymon / xymon | 4.1.2-p2 | 4.1.2-p2.x |
| xymon / xymon | 4.0.1 | 4.0.1.x |
| xymon / xymon | 4.0.3 | 4.0.3.x |
- http://osvdb.org/71489
- http://secunia.com/advisories/44036
- http://securityreason.com/securityalert/8209
- http://www.securityfocus.com/archive/1/517316/100/0/threaded
- http://www.securityfocus.com/archive/1/517325/100/0/threaded
- http://www.securityfocus.com/bid/47156
- http://xymon.svn.sourceforge.net/viewvc/xymon/branches/4.3.2/Changes?revision=6673&view=markup
- https://exchange.xforce.ibmcloud.com/vulnerabilities/66542
Deep Security Visibility Without the Complexity
SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.
- No setup fees
- 5-min deployment
- Cancel anytime