Latest version: v6.1.240321
| CVE/PVE | Vulnerability ID | Advisory | Affected versions | Severity | Severity Score |
|---|---|---|---|---|---|
| PVE-2022-52342 | 52342 |
Ntopng 5.0 fixes SSRF and stored-XSS injected with malicious SSDP res… |
|
- | - |
| PVE-2022-52341 | 52341 |
Ntopng 5.0 fixes stored XSS in preferences. https://github.com/ntop/… |
|
- | - |
| PVE-2022-52345 | 52345 |
Ntopng 4.2 fixes a heap-use-after-free vulnerability in ContinuousPin… |
|
- | - |
| PVE-2022-52340 | 52340 |
Ntopng 4.2 fixes XSS in dissected HTTP URLs, TLS certs, and DNS names… |
|
- | - |
| PVE-2022-52337 | 52337 |
Ntopng 4.2 fixes CSRF vulnerabilities when POSTing JSON. https://git… |
|
- | - |
| PVE-2022-52306 | 52306 |
Ntopng 4.2 fixes a heap-use-after-free vulnerability on HTTP dissecte… |
|
- | - |
| PVE-2022-52338 | 52338 |
Ntopng 4.0 fixes possible stored XSS in runtime.lua. https://github.… |
|
- | - |
| PVE-2022-52339 | 52339 |
Ntopng 4.0 fixes possible XSS in login.lua referer param. https://gi… |
|
- | - |
| PVE-2022-52364 | 52364 |
Ntopng 3.8 fixes race conditions with custom categories reload. http… |
|
- | - |
| PVE-2022-52363 | 52363 |
Ntopng 3.2 changes the way host pool inc/dec are implemented to avoid… |
|
- | - |
| PVE-2022-52307 | 52307 |
Ntopng 3.2 avoids offering unsafe SSLv3. https://github.com/ntop/nto… |
|
- | - |
| PVE-2022-52336 | 52336 |
Ntopng 3.0 hardens the code to prevent SQL injections. https://githu… |
|
- | - |
| PVE-2022-52344 | 52344 |
Ntopng 3.0 forces default admin password change. https://github.com/… |
|
- | - |
| PVE-2022-52343 | 52343 |
Ntopng 3.0 includes a fix for a HTTP header injection vulnerability. … |
|
- | - |