Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
skyboxsecurity skybox platform vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-9246
An issue exists in Skybox Platform prior to 7.5.201. Remote Unauthenticated Code Execution exists via a WAR archive containing a JSP file. The WAR file is sent to /skyboxview-softwareupdate/services/CollectorSoftwareUpdate and the JSP file is reached at /opt/skyboxview/thirdparty...
Skyboxsecurity Skybox Platform
9.8
CVSSv3
CVE-2015-9249
An issue exists in Skybox Platform prior to 7.5.201. SQL Injection exists in /skyboxview/webservice/services/VersionWebService via a soapenv:Body element.
Skyboxsecurity Skybox Platform
7.5
CVSSv3
CVE-2015-9250
An issue exists in Skybox Platform prior to 7.5.201. Directory Traversal exists in /skyboxview/webskybox/attachmentdownload and /skyboxview/webskybox/filedownload via the tempFileName parameter.
Skyboxsecurity Skybox Platform
5.4
CVSSv3
CVE-2015-9247
An issue exists in Skybox Platform prior to 7.5.401. Reflected cross-site scripting vulnerabilities exist in /skyboxview/webservice/services/VersionRepositoryWebService via a soapenv:Body element, or in the status parameter to login.html.
Skyboxsecurity Skybox Platform
5.4
CVSSv3
CVE-2015-9248
An issue exists in Skybox Platform prior to 7.5.201. Stored cross-site scripting vulnerabilities exist in the title, Comments, or Description field to /skyboxview/webskybox/tickets in Change Manager.
Skyboxsecurity Skybox Platform
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started