Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
log injection vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2018-0194
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local malicious user to inject arbitrary commands into the CLI of the affected software, which could allow the malicious user to gain access to the underlying Linux shell of an affec...
Cisco Ios Xe
9.8
CVSSv3
CVE-2017-14094
A vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an malicious user to perform remote command execution via a cron job injection on a vulnerable system.
Trendmicro Smart Protection Server
1 EDB exploit
8.1
CVSSv3
CVE-2017-14095
A vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an malicious user to perform remote command execution via a local file inclusion on a vulnerable system.
Trendmicro Smart Protection Server
1 EDB exploit
6.1
CVSSv3
CVE-2017-14096
A stored cross site scripting (XSS) vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an malicious user to execute a malicious payload on vulnerable systems.
Trendmicro Smart Protection Server
1 EDB exploit
9.8
CVSSv3
CVE-2017-14097
An improper access control vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an malicious user to decrypt contents of a database with information that could be used to access a vulnerable system.
Trendmicro Smart Protection Server
1 EDB exploit
8.8
CVSSv3
CVE-2017-11398
A session hijacking via log disclosure vulnerability in Trend Micro Smart Protection Server (Standalone) versions 3.2 and below could allow an unauthenticated malicious user to hijack active user sessions to perform authenticated requests on a vulnerable system.
Trendmicro Smart Protection Server
1 EDB exploit
7.2
CVSSv3
CVE-2022-20851
A vulnerability in the web UI feature of Cisco IOS XE Software could allow an authenticated, remote malicious user to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability b...
Cisco Ios Xe 17.6.1
7.2
CVSSv3
CVE-2019-1755
A vulnerability in the Web Services Management Agent (WSMA) function of Cisco IOS XE Software could allow an authenticated, remote malicious user to execute arbitrary Cisco IOS commands as a privilege level 15 user. The vulnerability occurs because the affected software improperl...
Cisco Ios Xe 16.8.1s
Cisco Ios Xe 16.8.1b
Cisco Ios Xe 16.2.1
Cisco Ios Xe 16.4.3
Cisco Ios Xe 16.8.1a
Cisco Ios Xe 16.1.3
Cisco Ios Xe 16.3.8
Cisco Ios Xe 16.2.2
Cisco Ios Xe 16.8.1e
Cisco Ios Xe 3.6.10e
Cisco Ios Xe 16.4.2
Cisco Ios Xe 16.8.1d
Cisco Ios Xe 16.3.2
Cisco Ios Xe 16.3.1a
Cisco Ios Xe 16.3.5
Cisco Ios Xe 16.7.1
Cisco Ios Xe 16.1.1
Cisco Ios Xe 16.1.2
Cisco Ios Xe 16.5.1
Cisco Ios Xe 16.3.4
Cisco Ios Xe 16.8.1
Cisco Ios Xe 16.4.1
8.8
CVSSv3
CVE-2019-12650
Multiple vulnerabilities in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote malicious user to execute commands with elevated privileges on the affected device. For more information about these vulnerabilities, see the Details se...
Cisco Ios 16.11.1
Cisco Ios Xe 16.6.5
Cisco Ios Xe 17.1.1
8.8
CVSSv3
CVE-2019-12651
Multiple vulnerabilities in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote malicious user to execute commands with elevated privileges on the affected device. For more information about these vulnerabilities, see the Details se...
Cisco Ios 16.11.1
Cisco Cloud Services Router 1000v Firmware 17.1.1
Cisco Integrated Services Virtual Router Firmware 16.6.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »