Information on source package ocsinventory-server

Available versions

ReleaseVersion
jessie2.0.5-1.3
buster2.5+dfsg-1
sid2.5+dfsg-1

Open unimportant issues

BugjessiebustersidDescription
CVE-2018-15537vulnerablevulnerablevulnerableUnrestricted file upload (with remote code execution) in OCS Inventory ...
CVE-2018-14857vulnerablevulnerablevulnerableUnrestricted file upload (with remote code execution) in ...
CVE-2018-14473vulnerablefixedfixedOCS Inventory 2.4.1 lacks a proper XML parsing configuration, allowing ...
CVE-2018-12483vulnerablefixedfixedOCS Inventory 2.4.1 is prone to a remote command-execution ...
CVE-2018-12482vulnerablefixedfixedOCS Inventory 2.4.1 contains multiple SQL injections in the search ...
CVE-2018-1000558vulnerablefixedfixedOCS Inventory NG ocsreports 2.4 and ocsreports 2.3.1 version 2.4 and ...
CVE-2018-1000557vulnerablefixedfixedOCS Inventory OCS Inventory NG version ocsreports 2.4 contains a Cross ...
CVE-2014-4722vulnerablevulnerablevulnerableMultiple cross-site scripting (XSS) vulnerabilities in the OCS Reports ...
CVE-2010-1733vulnerablevulnerablevulnerableMultiple SQL injection vulnerabilities in OCS Inventory NG before ...

Resolved issues

BugDescription
TEMP-0531735-61C2C9OCS Inventory NG SQL Injection Vulnerability
CVE-2011-4024Cross-site scripting (XSS) vulnerability in ocsinventory in OCS ...
CVE-2010-1595Multiple SQL injection vulnerabilities in ocsreports/index.php in OCS ...
CVE-2010-1594Multiple cross-site scripting (XSS) vulnerabilities in ...
CVE-2009-3042SQL injection vulnerability in machine.php in Open Computer and ...
CVE-2009-3040Multiple SQL injection vulnerabilities in Open Computer and Software ...
CVE-2009-2166Absolute path traversal vulnerability in cvs.php in OCS Inventory NG ...
CVE-2009-1769The web interface in Open Computer and Software Inventory Next ...
CVE-2009-1443Multiple unspecified vulnerabilities in the Server component in OCS ...

Search for package or bug name: Reporting problems