Ganglia: >> Ganglia-Web >> 3.7.5 Security Vulnerabilities
A cross-site scripting (XSS) vulnerability in the component /master/header.php of Ganglia-web v3.73 to v3.76 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "tz" parameter.
CVSS Score
5.4
EPSS Score
0.003
Published
2024-11-19
A cross-site scripting (XSS) vulnerability in the component /graph_all_periods.php of Ganglia-web v3.73 to v3.75 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "g" parameter.
CVSS Score
5.4
EPSS Score
0.003
Published
2024-11-19
ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter.
CVSS Score
6.1
EPSS Score
0.002
Published
2020-01-11
ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php cs parameter.
CVSS Score
6.1
EPSS Score
0.004
Published
2020-01-11