Cross-site scripting (XSS) vulnerability in the administer interface in the UniFi Controller in Ubiquiti Networks UniFi 2.3.5 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted client hostname.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:NUi Unifi Controller
APPUi< 2.3.6
Powiązane podatności
An issue was discovered on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0....
The Open Connectivity Foundation UPnP specification before 2020-04-17 does not forbid the acceptance of a subs...
Multiple cross-site request forgery (CSRF) vulnerabilities in Ubiquiti Networks UniFi Controller before 3.2.1 ...
SMTP MITM refers to a malicious actor setting up an SMTP proxy server between the UniFi Controller version <= ...
Ubiquiti UniFi Controller before 3.2.1 logs the administrative password hash in syslog messages, which allows ...