CVSS: 4.3EPSS: 0%CPEs: 19EXPL: 1CVE-2013-0275
https://notcve.org/view.php?id=CVE-2013-0275
Multiple cross-site scripting (XSS) vulnerabilities in Ganglia Web before 3.5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. Múltiples vulnerabilidades de ejecución de secuencias de comandos en sitios cruzados (XSS) en Ganglia Web anterior a v3.5.6 que permite a atacantes remotos inyectar secuencias de comandos web o HTML a través de vectores no especificados. • http://ganglia.info/?p=566 http://www.openwall.com/lists/oss-security/2013/02/08/6 http://www.securityfocus.com/bid/58204 https://bugzilla.redhat.com/show_bug.cgi?id=892823 https://github.com/ganglia/ganglia-web/commit/31d348947419058c43b8dfcd062e2988abd5058e • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •
CVSS: 7.5EPSS: 18%CPEs: 14EXPL: 1CVE-2012-3448 – Ganglia Web Frontend < 3.5.1 - PHP Code Execution
https://notcve.org/view.php?id=CVE-2012-3448
Unspecified vulnerability in Ganglia Web before 3.5.1 allows remote attackers to execute arbitrary PHP code via unknown attack vectors. Vulnerabilidad no especificada en Ganglia Web anterior a v3.5.1 permite a atacantes remotos a ejecutar comandos PHP a través de vectores de ataque desconocidos. Ganglia Web Frontend versions prior to 3.5.1 suffer from a php code execution vulnerability. • https://www.exploit-db.com/exploits/38030 http://ganglia.info/?p=549 http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084196.html http://lists.fedoraproject.org/pipermail/package-announce/2012-July/084202.html http://secunia.com/advisories/50047 http://www.debian.org/security/2013/dsa-2610 http://www.openwall.com/lists/oss-security/2012/08/02/1 http://www.securityfocus.com/bid/54699 https://bugs.gentoo.org/show_bug.cgi?id=428776 https://bugzilla.re •