Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
xsuite vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2015-4665
Cross-site scripting (XSS) vulnerability in ajax_cmd.php in Xceedium Xsuite 2.4.4.1 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the fileName parameter.
Xceedium Xsuite 2.3.0
Xceedium Xsuite 2.4.3.0
1 EDB exploit
755
VMScore
CVE-2015-4667
Multiple hardcoded credentials in Xsuite 2.x.
Xceedium Xsuite 2.4.3.0
Xceedium Xsuite 2.3.0
1 EDB exploit
505
VMScore
CVE-2015-4666
Directory traversal vulnerability in opm/read_sessionlog.php in Xceedium Xsuite 2.4.4.5 and previous versions allows remote malicious users to read arbitrary files via a ....// (quadruple dot double slash) in the logFile parameter.
Xceedium Xsuite 2.3.0
Xceedium Xsuite 2.4.3.0
1 EDB exploit
585
VMScore
CVE-2015-4668
Open redirect vulnerability in Xsuite 2.4.4.5 and previous versions allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirurl parameter.
Xceedium Xsuite 2.3.0
Xceedium Xsuite 2.4.3.0
1 EDB exploit
725
VMScore
CVE-2015-4669
The MySQL "root" user in Xsuite 2.x does not have a password set, which allows local users to access databases on the system.
Xceedium Xsuite 2.3.0
Xceedium Xsuite 2.4.3.0
1 EDB exploit
755
VMScore
CVE-2015-4664
An improper input validation vulnerability in CA Privileged Access Manager 2.4.4.4 and previous versions allows remote malicious users to execute arbitrary commands.
Broadcom Privileged Access Manager
Xceedium Xsuite 2.4.3.0
Xceedium Xsuite 2.3.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27977
IMAP
local users
CVE-2024-32038
CVE-2023-49963
CVE-2023-22869
CVE-2024-31497
local
CVE-2024-2961
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started