EyesOfNetworkCommunity/eonweb

GitHub

github.com

Releases18

Frequency4 months 2 weeks

Last Release over 3 years ago

Stars9

EyesOfNetwork web interface

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2022-41571 ↗	Sep 27, 2022Tuesday, 27 September 2022, 23:15	9.8 CRITICAL	—
An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Local file inclusion can occur.
CVE-2022-41570 ↗	Sep 27, 2022Tuesday, 27 September 2022, 23:15	9.8 CRITICAL	—
An issue was discovered in EyesOfNetwork (EON) through 5.3.11. Unauthenticated SQL injection can occur.
CVE-2022-24612 ↗	Feb 25, 2022Friday, 25 February 2022, 12:15	5.4 MEDIUM	3.5 LOW
An authenticated user can upload an XML file containing an XSS via the ITSM module of EyesOfNetwork 5.3.11, resulting in a stored XSS.
CVE-2021-33525 ↗	May 24, 2021Monday, 24 May 2021, 20:15	8.8 HIGH	9 HIGH
EyesOfNetwork eonweb through 5.3-11 allows Remote Command Execution (by authenticated users) via shell metacharacters in the nagios_path parameter to lilac/export.php, as demonstrated by %26%26+curl to insert an "&& curl" substring for the shell.
CVE-2021-27513 ↗	Feb 22, 2021Monday, 22 February 2021, 00:15	8.8 HIGH	6.5 MEDIUM
The module admin_ITSM in EyesOfNetwork 5.3-10 allows remote authenticated users to upload arbitrary .xml.php files because it relies on "le filtre userside."
CVE-2021-27514 ↗	Feb 22, 2021Monday, 22 February 2021, 00:15	9.8 CRITICAL	7.5 HIGH
EyesOfNetwork 5.3-10 uses an integer of between 8 and 10 digits for the session ID, which might be leveraged for brute-force authentication bypass (such as in CVE-2021-27513 exploitation).
CVE-2020-27886 ↗	Oct 29, 2020Thursday, 29 October 2020, 19:15	9.8 CRITICAL	7.5 HIGH
An issue was discovered in EyesOfNetwork eonweb 5.3-7 through 5.3-8. The eonweb web interface is prone to a SQL injection, allowing an unauthenticated attacker to exploit the username_available function of the includes/functions.php file (which is called by login.php).
CVE-2020-27887 ↗	Oct 29, 2020Thursday, 29 October 2020, 19:15	8.8 HIGH	9 HIGH
An issue was discovered in EyesOfNetwork 5.3 through 5.3-8. An authenticated web user with sufficient privileges could abuse the AutoDiscovery module to run arbitrary OS commands via the nmap_binary parameter to lilac/autodiscovery.php.
CVE-2020-24390 ↗	Aug 27, 2020Thursday, 27 August 2020, 16:15	6.1 MEDIUM	4.3 MEDIUM
eonweb in EyesOfNetwork before 5.3-7 does not properly escape the username on the /module/admin_logs page, which might allow pre-authentication stored XSS during login/logout logs recording.
CVE-2020-9465 ↗	Feb 28, 2020Friday, 28 February 2020, 20:15	9.8 CRITICAL	7.5 HIGH
An issue was discovered in EyesOfNetwork eonweb 5.1 through 5.3 before 5.3-3. The eonweb web interface is prone to a SQL injection, allowing an unauthenticated attacker to perform various tasks such as authentication bypass via the user_id field in a cookie.
CVE-2020-8654 ↗	Feb 7, 2020Friday, 7 February 2020, 00:15	8.8 HIGH	9 HIGH
An issue was discovered in EyesOfNetwork 5.3. An authenticated web user with sufficient privileges could abuse the AutoDiscovery module to run arbitrary OS commands via the /module/module_frame/index.php autodiscovery.php target field.
CVE-2017-13780 ↗	Aug 30, 2017Wednesday, 30 August 2017, 17:29	—	5 MEDIUM
The EyesOfNetwork web interface (aka eonweb) 5.1-0 allows directory traversal attacks for reading arbitrary files via the module/admin_conf/download.php file parameter.
CVE-2017-6087 ↗	Mar 24, 2017Friday, 24 March 2017, 14:59	—	6.5 MEDIUM
EyesOfNetwork ("EON") 5.0 and earlier allows remote authenticated users to execute arbitrary code via shell metacharacters in the selected_events[] parameter in the (1) acknowledge, (2) delete, or (3) ownDisown function in module/monitoring_ged/ged_functions.php or the (4) module parameter to module/index.php.