Vulnerabilities > Ganglia > Ganglia WEB
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-11 | CVE-2019-20379 | Cross-site Scripting vulnerability in Ganglia Ganglia-Web ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php cs parameter. | 4.3 |
| 2020-01-11 | CVE-2019-20378 | Cross-site Scripting vulnerability in Ganglia Ganglia-Web ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter. | 4.3 |
| 2017-08-09 | CVE-2015-6816 | Improper Authentication vulnerability in multiple products ganglia-web before 3.7.1 allows remote attackers to bypass authentication. | 7.5 |
| 2014-04-02 | CVE-2013-1770 | Cross-Site Scripting vulnerability in Ganglia Ganglia-Web 3.5.7 Cross-site scripting (XSS) vulnerability in views_view.php in Ganglia Web 3.5.7 allows remote attackers to inject arbitrary web script or HTML via the view_name parameter. | 4.3 |
| 2013-12-05 | CVE-2013-6395 | Cross-Site Scripting vulnerability in Ganglia Ganglia-Web 3.5.10/3.5.8 Cross-site scripting (XSS) vulnerability in header.php in Ganglia Web 3.5.8 and 3.5.10 allows remote attackers to inject arbitrary web script or HTML via the host_regex parameter to the default URI, which is processed by get_context.php. | 4.3 |
| 2013-03-14 | CVE-2013-0275 | Cross-Site Scripting vulnerability in Ganglia Ganglia-Web Multiple cross-site scripting (XSS) vulnerabilities in Ganglia Web before 3.5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors. | 4.3 |
| 2012-08-06 | CVE-2012-3448 | PHP Code Execution vulnerability in Ganglia Unspecified vulnerability in Ganglia Web before 3.5.1 allows remote attackers to execute arbitrary PHP code via unknown attack vectors. | 7.5 |