Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
opsview opsview vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2018-16144
The test connection functionality in the NetAudit section of Opsview Monitor prior to 5.3.1 and 5.4.x prior to 5.4.2 is vulnerable to command injection due to improper sanitization of the rancid_password parameter.
Opsview Opsview
9.3
CVSSv2
CVE-2018-16145
The /etc/init.d/opsview-reporting-module script that runs at boot time in Opsview Monitor prior to 5.3.1 and 5.4.x prior to 5.4.2 invokes a file that can be edited by the nagios user, and would allow malicious users to elevate their privileges to root after a system restart, henc...
Opsview Opsview
9
CVSSv2
CVE-2018-16146
The web management console of Opsview Monitor 5.4.x prior to 5.4.2 provides functionality accessible by an authenticated administrator to test notifications that are triggered under certain configurable events. The value parameter is not properly sanitized, leading to arbitrary c...
Opsview Opsview
7.5
CVSSv2
CVE-2013-5694
SQL injection vulnerability in status/service/acknowledge in Opsview prior to 4.4.1 allows remote malicious users to execute arbitrary SQL commands via the service_selection parameter.
Opsview Opsview 4.2
Opsview Opsview 4.1
Opsview Opsview 2.10
Opsview Opsview 2.8
Opsview Opsview 2.7
Opsview Opsview 3.10
Opsview Opsview 3.8
Opsview Opsview 3.6
Opsview Opsview 3.4
Opsview Opsview 3.2
Opsview Opsview
Opsview Opsview 4.3
Opsview Opsview 4.0
Opsview Opsview 3.14
Opsview Opsview 3.1
Opsview Opsview 2.14
Opsview Opsview 3.12
Opsview Opsview 3.0
Opsview Opsview 2.12
1 EDB exploit
6.8
CVSSv2
CVE-2013-3935
Cross-site request forgery (CSRF) vulnerability in Opsview prior to 4.4.1 and Opsview Core prior to 20130522 allows remote malicious users to hijack the authentication of administrators for requests that change the administrator password via unspecified vectors.
Opsview Opsview
Opsview Opsview Core
6.8
CVSSv2
CVE-2013-7256
Cross-site request forgery (CSRF) vulnerability in Opsview prior to 4.4.2 allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Opsview Opsview 4.4.0
Opsview Opsview 3.6
Opsview Opsview 3.4
Opsview Opsview 3.2
Opsview Opsview 3.14
Opsview Opsview 3.12
Opsview Opsview
Opsview Opsview 4.4
Opsview Opsview 4.0
Opsview Opsview 3.8
Opsview Opsview 3.1
Opsview Opsview 2.8
Opsview Opsview 4.3
Opsview Opsview 4.2
Opsview Opsview 4.1
Opsview Opsview 2.7
Opsview Opsview 2.14
Opsview Opsview 2.12
Opsview Opsview 2.10
Opsview Opsview 3.10
Opsview Opsview 3.0
5.8
CVSSv2
CVE-2016-10368
Open redirect vulnerability in Opsview Monitor Pro (before 5.1.0.162300841, before 5.0.2.27475, before 4.6.4.162391051, and 4.5.x without a certain 2016 security patch) allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via the bac...
Opsview Opsview 5.1.0
Opsview Opsview 4.6.4
Opsview Opsview 4.5.0
Opsview Opsview 5.0.2
5.8
CVSSv2
CVE-2013-7255
Open redirect vulnerability in Opsview prior to 4.4.2 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via unspecified vectors.
Opsview Opsview 4.4.0
Opsview Opsview
Opsview Opsview 4.1
Opsview Opsview 3.14
Opsview Opsview 3.12
Opsview Opsview 2.10
Opsview Opsview 4.2
Opsview Opsview 3.4
Opsview Opsview 3.2
Opsview Opsview 2.14
Opsview Opsview 2.12
Opsview Opsview 4.3
Opsview Opsview 3.8
Opsview Opsview 3.6
Opsview Opsview 3.0
Opsview Opsview 2.8
Opsview Opsview 2.7
Opsview Opsview 4.4
Opsview Opsview 4.0
Opsview Opsview 3.10
Opsview Opsview 3.1
5
CVSSv2
CVE-2016-10367
In Opsview Monitor Pro (before 5.1.0.162300841, before 5.0.2.27475, before 4.6.4.162391051, and 4.5.x without a certain 2016 security patch), an unauthenticated Directory Traversal vulnerability can be exploited by issuing a specially crafted HTTP GET request utilizing a simple U...
Opsview Opsview 5.1.0
Opsview Opsview 4.6.4
Opsview Opsview 4.5.0
Opsview Opsview 5.0.2
4.3
CVSSv2
CVE-2013-3936
Multiple cross-site scripting (XSS) vulnerabilities in Opsview prior to 4.4.1 and Opsview Core prior to 20130522 allow remote malicious users to inject arbitrary web script or HTML.
Opsview Opsview
Opsview Opsview Core
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »