CVE-2011-1716

Multiple cross-site scripting (XSS) vulnerabilities in the Web UI in Xymon before 4.3.1 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
Cross-site Scripting
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
4.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:N/I:P/A:N
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
VendorProductVersion
xymonxymon
𝑥
≤ 4.3.0
xymonxymon
4.0
xymonxymon
4.0.1
xymonxymon
4.0.2
xymonxymon
4.0.3
xymonxymon
4.0.4
xymonxymon
4.1.0
xymonxymon
4.1.1
xymonxymon
4.1.2
xymonxymon
4.1.2:p1
xymonxymon
4.1.2:p2
xymonxymon
4.2.0
xymonxymon
4.2.2
xymonxymon
4.2.3
xymonxymon
4.3.0:beta1
xymonxymon
4.3.0:beta2
xymonxymon
4.3.0:beta3
xymonxymon
4.3.0:rc1
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
xymon
bookworm
4.3.30-1
fixed
bullseye
4.3.30-1
fixed
wheezy
no-dsa
squeeze
no-dsa
sid
4.3.30-4
fixed
trixie
4.3.30-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
xymon
quantal
not-affected
precise
Fixed 4.3.0~beta2.dfsg-9.1ubuntu0.1
released
oneiric
Fixed 4.3.0~beta2.dfsg-9ubuntu1.1
released
natty
ignored
maverick
ignored
lucid
Fixed 4.3.0~beta2.dfsg-5ubuntu0.1
released
karmic
ignored
hardy
dne
dapper
dne
Common Weakness Enumeration
References
http://osvdb.org/71489
http://secunia.com/advisories/44036
http://securityreason.com/securityalert/8209
http://www.securityfocus.com/archive/1/517316/100/0/threaded
http://www.securityfocus.com/archive/1/517325/100/0/threaded
http://www.securityfocus.com/bid/47156
http://xymon.svn.sourceforge.net/viewvc/xymon/branches/4.3.2/Changes?revision=6673&view=markup
https://exchange.xforce.ibmcloud.com/vulnerabilities/66542
http://osvdb.org/71489
http://secunia.com/advisories/44036
http://securityreason.com/securityalert/8209
http://www.securityfocus.com/archive/1/517316/100/0/threaded
http://www.securityfocus.com/archive/1/517325/100/0/threaded
http://www.securityfocus.com/bid/47156
http://xymon.svn.sourceforge.net/viewvc/xymon/branches/4.3.2/Changes?revision=6673&view=markup
https://exchange.xforce.ibmcloud.com/vulnerabilities/66542