VYPR

Prtg Network Monitor

by Paessler

CVEs (7)

  • CVE-2017-15651MedOct 20, 2017
    risk 0.44cvss 6.7epss 0.01

    PRTG Network Monitor 17.3.33.2830 allows remote authenticated administrators to execute arbitrary code by uploading a .exe file and then proceeding in spite of the error message.

  • CVE-2017-15009MedOct 4, 2017
    risk 0.40cvss 6.1epss 0.00

    PRTG Network Monitor version 17.3.33.2830 is vulnerable to reflected Cross-Site Scripting on error.htm (the error page), via the errormsg parameter.

  • CVE-2017-9816MedAug 18, 2017
    risk 0.40cvss 6.1epss 0.00

    Cross-site scripting (XSS) vulnerability in Paessler PRTG Network Monitor before 17.2.32.2279 allows remote attackers to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2016-5078MedApr 10, 2017
    risk 0.40cvss 6.1epss 0.00

    Paessler PRTG before 16.2.24.4045 has XSS via SNMP.

  • CVE-2017-15360MedOct 15, 2017
    risk 0.35cvss 5.4epss 0.00

    PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored Cross-Site Scripting on all group names created, related to incorrect error handling for an HTML encoded script.

  • CVE-2017-12879MedAug 24, 2017
    risk 0.35cvss 5.4epss 0.00

    Cross-site scripting (XSS-STORED) vulnerability in the DEVICES OR SENSORS functionality in Paessler PRTG Network Monitor before 17.3.33.2654 allows authenticated remote attackers to inject arbitrary web script or HTML.

  • CVE-2017-15008MedOct 4, 2017
    risk 0.31cvss 4.8epss 0.00

    PRTG Network Monitor version 17.3.33.2830 is vulnerable to stored Cross-Site Scripting on all sensor titles, related to incorrect error handling for a %00 in the SRC attribute of an IMG element.