Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
benjamin daniel mussler vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2015-6000
Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.3.0 and previous versions allows remote authenticated users to execute arbitrary code by uploading a file with a...
Vtiger Vtiger Crm
1 EDB exploit
NA
CVE-2014-2946
Cross-site request forgery (CSRF) vulnerability in api/sms/send-sms in the Web UI 11.010.06.01.858 on Huawei E303 modems with software 22.157.18.00.858 allows remote malicious users to hijack the authentication of administrators for requests that perform API operations and send S...
Huawei E303 Modem Firmware 22.157.18.00.858
Huawei Webui 11.010.06.01.858
Huawei E303 Modem Ch2e303sm
1 EDB exploit
6.1
CVSSv3
CVE-2016-6851
An issue exists in Open-Xchange OX Guard prior to 2.4.2-rev5. Script code can be provided as parameter to the OX Guard guest reader web application. This allows cross-site scripting attacks against arbitrary users since no prior authentication is needed. Malicious script code can...
Open-xchange Ox Guard
1 EDB exploit
6.1
CVSSv3
CVE-2016-6853
An issue exists in Open-Xchange OX Guard prior to 2.4.2-rev5. Script code and references to external websites can be injected to the names of PGP public keys. When requesting that key later on using a specific URL, such script code might get executed. In case of injecting externa...
Open-xchange Ox Guard
1 EDB exploit
6.1
CVSSv3
CVE-2016-6854
An issue exists in Open-Xchange OX Guard prior to 2.4.2-rev5. Script code which got injected to a mail with inline PGP signature gets executed when verifying the signature. Malicious script code can be executed within a user's context. This can lead to session hijacking or t...
Open-xchange Ox Guard
1 EDB exploit
7.3
CVSSv3
CVE-2016-1713
Unrestricted file upload vulnerability in the Settings_Vtiger_CompanyDetailsSave_Action class in modules/Settings/Vtiger/actions/CompanyDetailsSave.php in Vtiger CRM 6.4.0 allows remote authenticated users to execute arbitrary code by uploading a crafted image file with an execut...
Vtiger Vtiger Crm 6.4.0
2 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started