CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Netsweeper: >> Netsweeper >> 4.0.5 Security Vulnerabilities

CVE-2012-3859

Unspecified vulnerability in the WebAdmin Portal in Netsweeper has unknown impact and attack vectors, a different vulnerability than CVE-2012-2446 and CVE-2012-2447.

CVSS Score

10.0

EPSS Score

0.128

Published

2012-07-09

CVE-2012-2446

Cross-site scripting (XSS) vulnerability in tools/local_lookup.php in the WebAdmin Portal in Netsweeper allows remote attackers to inject arbitrary web script or HTML via the group parameter in a lookup action.

CVSS Score

4.3

EPSS Score

0.003

Published

2012-07-09

CVE-2012-2447

Cross-site request forgery (CSRF) vulnerability in accountmgr/adminupdate.php in the WebAdmin Portal in Netsweeper allows remote attackers to hijack the authentication of administrators for requests that create administrative accounts via an add action.

CVSS Score

6.8

EPSS Score

0.001

Published

2012-07-09

Page 2

Vulnerabilities

Vulnerable Software

Netsweeper: >> Netsweeper >> 4.0.5 Security Vulnerabilities

Products

Pricing

Contact Us