Eyesofnetwork » Eyesofnetwork : Security Vulnerabilities, CVEs, Published In 2017 (XSS)
A persistent (stored) XSS vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to inject arbitrary web script or HTML via the hosts array parameter to module/admin_device/index.php.
Max CVSS
4.8
EPSS Score
0.07%
Published
2017-10-11
Updated
2021-02-23
Cross-site scripting (XSS) vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated users to inject arbitrary web script or HTML via the url parameter to module/module_frame/index.php.
Max CVSS
5.4
EPSS Score
0.07%
Published
2017-10-03
Updated
2021-02-23
Cross-site scripting (XSS) vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated users to inject arbitrary web script or HTML via the bp_name parameter to /module/admin_bp/add_services.php.
Max CVSS
5.4
EPSS Score
0.07%
Published
2017-10-03
Updated
2021-02-23
Cross-site scripting (XSS) vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated administrators to inject arbitrary web script or HTML via the object parameter to module/admin_conf/index.php.
Max CVSS
4.8
EPSS Score
0.07%
Published
2017-10-03
Updated
2021-02-23
Cross-site scripting (XSS) vulnerability in the EyesOfNetwork web interface (aka eonweb) 5.1-0 allows remote authenticated users to inject arbitrary web script or HTML via the filter parameter to module/module_filters/index.php.
Max CVSS
5.4
EPSS Score
0.07%
Published
2017-09-27
Updated
2021-02-23
5 vulnerabilities found