Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-49488
A cross-site scripting (XSS) vulnerability in Openfiler ESA v2.99.1 allows malicious users to execute arbitrary web scripts or HTML via injecting a crafted payload into the nic parameter.
Openfiler Openfiler 2.99.1
NA
CVE-2023-49489
Reflective Cross Site Scripting (XSS) vulnerability in KodExplorer version 4.51, allows malicious users to obtain sensitive information and escalate privileges via the APP_HOST parameter at config/i18n/en/main.php.
Kodcloud Kodexplorer 4.51
NA
CVE-2023-4949
An attacker with local access to a system (either through a disk or external drive) can present a modified XFS partition to grub-legacy in such a way to exploit a memory corruption in grub’s XFS file system implementation.
Gnu Grub
Xen Xen -
NA
CVE-2023-49490
XunRuiCMS v4.5.5 exists to contain a reflective cross-site scripting (XSS) vulnerability via the component /admin.php.
Xunruicms Xunruicms 4.5.5
NA
CVE-2023-49492
DedeCMS v5.7.111 exists to contain a reflective cross-site scripting (XSS) vulnerability via the imgstick parameter at selectimages.php.
Dedecms Dedecms 5.7.111
NA
CVE-2023-49493
DedeCMS v5.7.111 exists to contain a reflective cross-site scripting (XSS) vulnerability via the v parameter at selectimages.php.
Dedecms Dedecms 5.7.111
NA
CVE-2023-49494
DedeCMS v5.7.111 exists to contain a reflective cross-site scripting (XSS) vulnerability via the component select_media_post_wangEditor.php.
Dedecms Dedecms 5.7.111
NA
CVE-2023-52326
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an malicious user to achieve remote code execution on affected servers. Please note this vulnerability is similar, but not identical to CVE-2023-...
Trendmicro Apex Central 2019
NA
CVE-2023-52327
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an malicious user to achieve remote code execution on affected servers. Please note this vulnerability is similar, but not identical to CVE-2023-...
Trendmicro Apex Central 2019
NA
CVE-2023-52328
Certain dashboard widgets on Trend Micro Apex Central (on-premise) are vulnerable to cross-site scripting (XSS) attacks that may allow an malicious user to achieve remote code execution on affected servers. Please note this vulnerability is similar, but not identical to CVE-2023-...
Trendmicro Apex Central 2019
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-35229
privilege escalation
local users
CVE-2024-5405
CVE-2024-27842
CVE-2024-5274
CVE-2024-5378
CVE-2024-34152
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »