← Back

Monit

monit

Vendor: Mmonit • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2019-11454
4Canonical
DebianFedoraproject+1 more
4Debian Linux
FedoraMonit+1 more
Nov 21, 2024
Apr 22, 2019
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Persistent cross-site scripting (XSS) in http/cervlet.c in Tildeslash Monit before 5.25.3 allows a remote unauthenticated attacker to introduce arbitrary JavaScript via manipulation of an unsanitized user field of the Au...Show more
Persistent cross-site scripting (XSS) in http/cervlet.c in Tildeslash Monit before 5.25.3 allows a remote unauthenticated attacker to introduce arbitrary JavaScript via manipulation of an unsanitized user field of the Authorization header for HTTP Basic Authentication, which is mishandled during an _viewlog operation.Show less
CVE-2016-7067
1Mmonit
1Monit
Nov 21, 2024
Sep 10, 2018
N/A· v4
6.5 MEDIUM· v3
4.3 MEDIUM· v2
Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a...Show more
Monit before version 5.20.0 is vulnerable to a cross site request forgery attack. Successful exploitation will enable an attacker to disable/enable all monitoring for a particular host or disable/enable monitoring for a specific service.Show less