Description
Multiple cross-site scripting (XSS) vulnerabilities in Ganglia Web before 3.5.6 allow remote attackers to inject arbitrary web script or HTML via unspecified vectors.
References (5)
Core 5
Core References
Issue Tracking x_refsource_misc
https://bugzilla.redhat.com/show_bug.cgi?id=892823
Third Party Advisory, VDB Entry vdb-entry
x_refsource_bid
http://www.securityfocus.com/bid/58204
Vendor Advisory x_refsource_confirm
http://ganglia.info/?p=566
Mailing List mailing-list
x_refsource_mlist
http://www.openwall.com/lists/oss-security/2013/02/08/6
Exploit, Patch x_refsource_confirm
https://github.com/ganglia/ganglia-web/commit/31d348947419058c43b8dfcd062e2988abd5058e
Scores
EPSS
0.0029
EPSS Percentile
52.8%
Details
CWE
CWE-79
Status
published
Products (19)
ganglia/ganglia-web
2.1.0
ganglia/ganglia-web
2.1.1
ganglia/ganglia-web
2.1.2
ganglia/ganglia-web
2.1.3
ganglia/ganglia-web
2.1.5
ganglia/ganglia-web
2.1.6
ganglia/ganglia-web
2.1.7
ganglia/ganglia-web
2.1.8
ganglia/ganglia-web
2.2.0
ganglia/ganglia-web
3.3.0
... and 9 more
Published
Mar 14, 2013
Tracked Since
Feb 18, 2026