CVE-2018-13442 (network_performance_monitor)

SolarWinds Network Performance Monitor 12.3 allows SQL Injection via the /api/ActiveAlertsOnThisEntity/GetActiveAlerts TriggeringObjectEntityNames parameter.

View Full Alert

Related Posts

  • CVE-2018-14919

    LOYTEC LGATE-902 6.3.2 devices allow XSS. View Full Alert

  • CVE-2018-14918

    LOYTEC LGATE-902 6.3.2 devices allow Directory Traversal. View Full Alert

  • CVE-2018-14916

    LOYTEC LGATE-902 6.3.2 devices allow Arbitrary file deletion. View Full Alert