Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloud portal vulnerabilities and exploits
(subscribe to this query)
4
CVSSv2
CVE-2013-1139
The nsAPI interface in Cisco Cloud Portal 9.1 SP1 and SP2, and 9.3 up to and including 9.3.2, does not properly check privileges, which allows remote authenticated users to obtain sensitive information via a crafted URL, aka Bug ID CSCud81134.
Cisco Cloud Portal 9.1
Cisco Cloud Portal 9.3
Cisco Cloud Portal 9.3.2
Cisco Cloud Portal 9.3.1
4.3
CVSSv2
CVE-2014-3352
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) 2008.3_SP9 and previous versions does not properly consider whether a session is a problematic NULL session, which allows remote malicious users to obtain sensitive information via crafted packets, related to an &quo...
Cisco Cloud Portal 2008.3
Cisco Cloud Portal 9.1
Cisco Cloud Portal 9.4
Cisco Cloud Portal 9.3.2
Cisco Cloud Portal
Cisco Cloud Portal 9.3.1
Cisco Cloud Portal 9.3
5
CVSSv2
CVE-2014-0694
Intelligent Automation for Cloud (IAC) in Cisco Cloud Portal 9.4.1 and previous versions includes a cryptographic key in binary files, which makes it easier for remote malicious users to obtain cleartext data from an arbitrary IAC installation by leveraging knowledge of this key,...
Cisco Cloud Portal 9.3.1
Cisco Cloud Portal 9.3.2
Cisco Cloud Portal 9.4
Cisco Cloud Portal 9.1
Cisco Cloud Portal 9.3
Cisco Cloud Portal
5
CVSSv2
CVE-2013-6708
Cisco Cloud Portal 9.4 allows remote malicious users to read files of unspecified types via a direct request, aka Bug IDs CSCuj08426 and CSCui60889.
Cisco Cloud Portal 9.4
4
CVSSv2
CVE-2014-3350
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly implement URL redirection, which allows remote authenticated users to obtain sensitive information via a crafted URL, aka Bug ID CSCuh84870.
Cisco Cloud Portal -
5
CVSSv2
CVE-2014-3351
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not properly consider whether a session is a problematic NULL session, which allows remote malicious users to obtain sensitive information via crafted packets, aka Bug IDs CSCuh87398 and CSCuh87380.
Cisco Cloud Portal -
4
CVSSv2
CVE-2014-3349
Cisco Intelligent Automation for Cloud (aka Cisco Cloud Portal) does not validate file types during the handling of file submission, which allows remote authenticated users to upload arbitrary files via a crafted request, aka Bug ID CSCuh87410.
Cisco Cloud Portal -
4
CVSSv2
CVE-2014-3297
Cisco Intelligent Automation for Cloud in Cisco Cloud Portal does not properly restrict the content of MyServices action URLs, which allows remote authenticated users to obtain sensitive information by reading (1) web-server access logs, (2) web-server Referer logs, or (3) the br...
Cisco Cloud Portal -
4
CVSSv2
CVE-2014-3298
Form Data Viewer in Cisco Intelligent Automation for Cloud in Cisco Cloud Portal places passwords in form data, which allows remote authenticated users to obtain sensitive information by reading HTML source code, aka Bug ID CSCui36976.
Cisco Cloud Portal -
5
CVSSv2
CVE-2021-22854
The HR Portal of Soar Cloud System fails to filter specific parameters. Remote attackers can inject SQL syntax and obtain all data in the database without privilege.
Hr Portal Project Hr Portal 7.3.2020.1013
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »