Known Vulnerabilities for Whatsup Gold by Ipswitch
Listed below are 10 of the newest known vulnerabilities associated with "Whatsup Gold" by "Ipswitch".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2018-8939 | An SSRF issue was discovered in NmAPI.exe in Ipswitch WhatsUp Gold before 2018 (18.0). Malicious actors can submit specially ... | 9.8 - CRITICAL | 2018-05-01 | 2018-06-13 |
| CVE-2018-8938 | A Code Injection issue was discovered in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold before 2018 (18.0). Malicious actors c... | 9.8 - CRITICAL | 2018-05-01 | 2018-06-13 |
| CVE-2018-5778 | An issue was discovered in Ipswitch WhatsUp Gold before 2017 Plus SP1 (17.1.1). Multiple SQL injection vulnerabilities are pr... | 9.8 - CRITICAL | 2018-01-24 | 2018-02-09 |
| CVE-2018-5777 | An issue was discovered in Ipswitch WhatsUp Gold before 2017 Plus SP1 (17.1.1). Remote clients can take advantage of a miscon... | 9.8 - CRITICAL | 2018-01-24 | 2019-10-03 |
| CVE-2016-1000000 | Ipswitch WhatsUp Gold 16.4.1 WrFreeFormText.asp sUniqueID Parameter Blind SQL Injection | 8.8 - HIGH | 2016-10-06 | 2017-11-03 |
| CVE-2015-8261 | The DroneDeleteOldMeasurements implementation in Ipswitch WhatsUp Gold before 16.4 does not properly validate serialized XML ... | 9.8 - CRITICAL | 2016-01-08 | 2017-09-10 |
| CVE-2015-6005 | Multiple cross-site scripting (XSS) vulnerabilities in IPSwitch WhatsUp Gold before 16.4 allow remote attackers to inject arb... | 6.9 - MEDIUM | 2015-12-27 | 2016-12-06 |
| CVE-2015-6004 | Multiple SQL injection vulnerabilities in IPSwitch WhatsUp Gold before 16.4 allow remote attackers to execute arbitrary SQL c... | 6.5 - MEDIUM | 2015-12-27 | 2016-12-06 |
| CVE-2012-4344 | Cross-site scripting (XSS) vulnerability in Ipswitch WhatsUp Gold 15.02 allows remote attackers to inject arbitrary web scrip... | 4.3 - MEDIUM | 2012-08-15 | 2017-08-29 |
| CVE-2012-2601 | SQL injection vulnerability in WrVMwareHostList.asp in Ipswitch WhatsUp Gold 15.02 allows remote attackers to execute arbitra... | 7.5 - HIGH | 2012-08-15 | 2017-08-29 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Ipswitch | Whatsup Gold | 8.03 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 8.03 | hotfix1 | All | All |
| Application | Ipswitch | Whatsup Gold | 8.01 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 8.0 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 7.04 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 7.03 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 7.0 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 17.1.1 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 16.4 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 16.3 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 15.02 | All | All | All |
| Application | Ipswitch | Whatsup Gold | 11 | All | All | All |