Vulnerabilities > Ganglia > Ganglia WEB > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-19 | CVE-2024-52762 | Cross-site Scripting vulnerability in Ganglia Ganglia-Web 3.7.3/3.7.4/3.7.5 A cross-site scripting (XSS) vulnerability in the component /master/header.php of Ganglia-web v3.73 to v3.76 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "tz" parameter. | 5.4 |
| 2024-11-19 | CVE-2024-52763 | Cross-site Scripting vulnerability in Ganglia Ganglia-Web 3.7.3/3.7.4/3.7.5 A cross-site scripting (XSS) vulnerability in the component /graph_all_periods.php of Ganglia-web v3.73 to v3.75 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the "g" parameter. | 5.4 |
| 2020-01-11 | CVE-2019-20379 | Cross-site Scripting vulnerability in Ganglia Ganglia-Web ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php cs parameter. | 6.1 |
| 2020-01-11 | CVE-2019-20378 | Cross-site Scripting vulnerability in Ganglia Ganglia-Web ganglia-web (aka Ganglia Web Frontend) through 3.7.5 allows XSS via the header.php ce parameter. | 6.1 |