Multiple cross-site scripting (XSS) vulnerabilities in SpiceWorks 5.3.75941 allow remote malicious users to inject arbitrary web script or HTML via the (1) syslocation, (2) syscontact, or (3) sysName configuration in snmpd.conf. NOTE: this entry was SPLIT from CVE-2012-2956 per ADT2 due to different vulnerability types.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
spiceworks spiceworks 5.3.75941 |