CVSS: 8.8EPSS: 0%CPEs: 4EXPL: 0CVE-2024-12284 – Authenticated privilege escalation
https://notcve.org/view.php?id=CVE-2024-12284
19 Feb 2025 — Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows. Authenticated privilege escalation in NetScaler Console and NetScaler Agent allows. • https://support.citrix.com/s/article/CTX692579-netscaler-console-and-netscaler-agent-security-bulletin-for-cve202412284?language=en_US • CWE-269: Improper Privilege Management •
CVSS: 6.4EPSS: 0%CPEs: 1EXPL: 0CVE-2014-125070 – yanheven console tables.py AvailabilityZonesTable cross site scripting
https://notcve.org/view.php?id=CVE-2014-125070
08 Jan 2023 — A vulnerability has been found in yanheven console and classified as problematic. Affected by this vulnerability is the function get_zone_hosts/AvailabilityZonesTable of the file openstack_dashboard/dashboards/admin/aggregates/tables.py. The manipulation leads to cross site scripting. The attack can be launched remotely. The patch is named ba908ae88d5925f4f6783eb234cc4ea95017472b. • https://github.com/yanheven/console/commit/ba908ae88d5925f4f6783eb234cc4ea95017472b • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •