Vulnerabilities (CVE)

Filtered by vendor Ganglia Subscribe
Filtered by product Ganglia-web
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-20379 1 Ganglia 1 Ganglia-web 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php cs parameter.
CVE-2019-20378 1 Ganglia 1 Ganglia-web 2024-11-21 4.3 MEDIUM 6.1 MEDIUM
ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter.
CVE-2015-6816 2 Fedoraproject, Ganglia 2 Fedora, Ganglia-web 2024-11-21 7.5 HIGH 9.8 CRITICAL
ganglia-web before 3.7.1 allows remote attackers to bypass authentication.
CVE-2013-6395 1 Ganglia 1 Ganglia-web 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote attackers to inject arbitrary web script or HTML via the host_regex parameter to the default URI, which is processed by get_context.php.
CVE-2013-1770 1 Ganglia 1 Ganglia-web 2024-11-21 4.3 MEDIUM N/A
Cross-site scripting (XSS) vulnerability in views_view.php in Ganglia Web 3.5.7 allows remote attackers to inject arbitrary web script or HTML via the view_name parameter.
CVE-2013-0275 1 Ganglia 1 Ganglia-web 2024-11-21 4.3 MEDIUM N/A
Multiple cross-site scripting (XSS) vulnerabilities in Ganglia Web before 3.5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
CVE-2012-3448 1 Ganglia 1 Ganglia-web 2024-11-21 7.5 HIGH N/A
Unspecified vulnerability in Ganglia Web before 3.5.1 allows remote attackers to execute arbitrary PHP code via unknown attack vectors.