Opennms.Org Opennms vulnerabilities
2 known vulnerabilities affecting opennms.org/opennms.
Total CVEs
2
CISA KEV
0
Public exploits
1
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-4320P4MEDIUMCVSS 4.3PoC≤ 1.0.0≤ 1.1.0+26 more2008-09-29
CVE-2008-4320 [MEDIUM] CWE-79 CVE-2008-4320: Multiple cross-site scripting (XSS) vulnerabilities in OpenNMS before 1.5.94 allow remote attackers
Multiple cross-site scripting (XSS) vulnerabilities in OpenNMS before 1.5.94 allow remote attackers to inject arbitrary web script or HTML via (1) the j_username parameter to j_acegi_security_check, (2) the username parameter to notification/list.jsp, and (3) the filter parameter to event/list.
nvd
CVE-2012-0936P4MEDIUMCVSS 4.3v1.8.0v1.8.1+117 more2012-01-29
CVE-2012-0936 [MEDIUM] CWE-79 CVE-2012-0936: Cross-site scripting (XSS) vulnerability in web/springframework/security/SecurityAuthenticationEvent
Cross-site scripting (XSS) vulnerability in web/springframework/security/SecurityAuthenticationEventOnmsEventBuilder.java in OpenNMS 1.8.x before 1.8.17, 1.9.93 and earlier, and 1.10.x before 1.10.1 allows remote attackers to inject arbitrary web script or HTML via the Username field, related to login.
nvd