Vulnerabilities for Operations manager (...) - CXSECURITY.COM

Vulnerabilities for 'Operations manager'

2014-08-29

CVE-2014-5073

CWE-Other

vmtadmin.cgi in VMTurbo Operations Manager before 4.6 build 28657 allows remote attackers to execute arbitrary commands via shell metacharacters in the fileDate parameter in a DOWN call.

2014-05-21

CVE-2014-3806

CWE-22

Directory traversal vulnerability in cgi-bin/help/doIt.cgi in VMTurbo Operations Manager before 4.6 allows remote attackers to read arbitrary files via a .. (dot dot) in the xml_path parameter.

Copyright 2024, cxsecurity.com