mailing list archives
Multiple XSS in Solarwinds Orion NPM 10.1
From: John Blakley <john.blakley () gmail com>
Date: Tue, 7 Dec 2010 11:16:48 -0600
Values placed in the URI of the browser are rendered correctly. Orion NPM
10.1 has just been released, so there is no known fix available as of yet.
Most "variable=" that I've checked are vulnerable:
If you need more information please let me know. Is there a template I
should fill out for these reports?
If this is published, please publish under x0skel and NOT my name....
- Multiple XSS in Solarwinds Orion NPM 10.1 John Blakley (Dec 08)