Lars Michelsen

3 exploits Active since Feb 2017
CVE-2016-6175 WRITEUP CRITICAL WRITEUP
php-gettext <1.0.12 - Code Injection
Eval injection vulnerability in php-gettext 1.0.12 and earlier allows remote attackers to execute arbitrary PHP code via a crafted plural forms header.
CVSS 9.8
CVE-2020-28919 WRITEUP MEDIUM WRITEUP
Checkmk < 1.6.0p19 - Authenticated Stored Cross-Site Scripting via View Title
A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x prior to 1.6.0p19 allows an authenticated remote attacker to inject arbitrary JavaScript via a javascript: URL in a view title.
CVSS 5.4
CVE-2020-28919 WRITEUP MEDIUM WRITEUP
Checkmk < 1.6.0p19 - Authenticated Stored Cross-Site Scripting via View Title
A stored cross site scripting (XSS) vulnerability in Checkmk 1.6.0x prior to 1.6.0p19 allows an authenticated remote attacker to inject arbitrary JavaScript via a javascript: URL in a view title.
CVSS 5.4