[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Xymon monitor cross-site scripting vulnerabilities

To: bugtraq@xxxxxxxxxxxxxxxxx
Subject: Xymon monitor cross-site scripting vulnerabilities
From: Henrik Størner <henrik@xxxxxxx>
Date: Sun, 03 Apr 2011 12:15:12 +0200

Several cross-site scripting vulnerabilities have been identified in theXymon systems- and network-monitoring tool available athttp://sourceforge.net/projects/xymon/


All versions prior to 4.3.1 (released April 3, 2011) are vulnerable.

I would like to thank David Ferrest for notifying me of this issue.


Henrik Størner,
lead Xymon developer.

Follow-Ups:
- Re: Xymon monitor cross-site scripting vulnerabilities
  - From: Henri Salo

Prev by Date: THOMSON Router XSS
Next by Date: DC4420 - London DEFCON - April meet - Wednesday 22nd April 2011
Previous by thread: RE: THOMSON Router XSS
Next by thread: Re: Xymon monitor cross-site scripting vulnerabilities
Index(es):
- Date
- Thread