all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

CVE-2018-25063 (dashboard)

Add to bookmarks
Jan. 1, 2023, 9:15 a.m. |

National Vulnerability Database web.nvd.nist.gov

A vulnerability classified as problematic was found in Zenoss Dashboard up to 1.3.4. Affected by this vulnerability is an unknown functionality of the file ZenPacks/zenoss/Dashboard/browser/resources/js/defaultportlets.js. The manipulation of the argument HTMLString leads to cross site scripting. The attack can be launched remotely. Upgrading to version 1.3.5 is able to address this issue. The name of the patch is f462285a0a2d7e1a9255b0820240b94a43b00a44. It is recommended to upgrade the affected component. The identifier VDB-217153 was assigned to this vulnerability.

address argument attack browser classified cross site scripting cve dashboard file issue manipulation name patch resources scripting version version 1 vulnerability zenoss

Visit resource

More from web.nvd.nist.gov / National Vulnerability Database

CVE-2023-45955 (lightstrip_firmware) 5 months, 2 weeks ago | web.nvd.nist.gov
attackers cve denial of service issue +1
CVE-2023-40101 (android) 5 months, 2 weeks ago | web.nvd.nist.gov
android check collapse cve +7
CVE-2023-21377 (android) 5 months, 2 weeks ago | web.nvd.nist.gov
android bypass cve disclosure +8
CVE-2023-21380 (android) 5 months, 2 weeks ago | web.nvd.nist.gov
android bluetooth buffer buffer overflow +9
CVE-2023-21382 (android) 5 months, 2 weeks ago | web.nvd.nist.gov
access android check cve +11
CVE-2023-21381 (android) 5 months, 2 weeks ago | web.nvd.nist.gov
android arbitrary code code code execution +10
CVE-2023-21385 (android) 5 months, 2 weeks ago | web.nvd.nist.gov
android corruption cve disclosure +7
CVE-2023-21387 (android) 5 months, 2 weeks ago | web.nvd.nist.gov
android backup bypass cve +11
CVE-2023-21389 (android) 5 months, 2 weeks ago | web.nvd.nist.gov
android bypass check cve +10

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Information Security Engineers

@ D. E. Shaw Research | New York City
View on infosec-jobs.com

Cyber Security Professional

@ BT Group | 25A DLF City Phase-III,, Gurugram, India
View on infosec-jobs.com

Head of Cyber Security Operations

@ Vector Limited | Auckland, New Zealand
View on infosec-jobs.com

Security Analyst (SOC)

@ Accesa & RaRo | Cluj-Napoca, Romania
View on infosec-jobs.com

Senior - IT Compliance-Cyber (Technology Risk Consulting)

@ EY | Bengaluru, KA, IN, 560016
View on infosec-jobs.com

Security Automation Engineer Internship - Secure Development Team Product Security (Brno, Czech Republic)

@ Red Hat | Brno, Czechia
View on infosec-jobs.com
View more jobs