Tobias Oetiker

2 exploits Active since Nov 2019

CVE-2014-6262 WRITEUP HIGH WRITEUP

Zenoss Core < 4.2.5 - Remote Code Execution via RRDtool Python Module Format String

Multiple format string vulnerabilities in the python module in RRDtool, as used in Zenoss Core before 4.2.5 and other products, allow remote attackers to execute arbitrary code or cause a denial of service (application crash) via a crafted third argument to the rrdtool.graph function, aka ZEN-15415, a related issue to CVE-2013-2131.

CVSS 7.5

View Code

CVE-2013-4168 WRITEUP MEDIUM WRITEUP

SmokePing 2.6.9 - Cross-Site Scripting in Start and End Time Fields

Cross-site scripting (XSS) vulnerability in SmokePing 2.6.9 in the start and end time fields.

CVSS 6.1

View Code