Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2020-7060
When using certain mbstring functions to convert multibyte encodings, in PHP versions 7.2.x below 7.2.27, 7.3.x below 7.3.14 and 7.4.x below 7.4.2 it is possible to supply data that will cause function mbfl_filt_conv_big5_wchar to read past the allocated buffer. This may lead to ...
Php Php
Tenable Tenable.sc
Oracle Communications Diameter Signaling Router
Opensuse Leap 15.1
Debian Debian Linux 8.0
7.8
CVSSv3
CVE-2020-7079
An improper signature validation vulnerability in Autodesk Dynamo BIM versions 2.5.1 and 2.5.0 may lead to code execution through maliciously crafted DLL files.
Autodesk Dynamo Bim 2.5.0
Autodesk Dynamo Bim 2.5.1
4.4
CVSSv3
CVE-2022-27599
An insertion of sensitive information into Log file vulnerability has been reported to affect product. If exploited, the vulnerability possibly provides local authenticated administrators with an additional, less-protected path to acquiring the information via unspecified vectors...
Qnap Qvr Pro Client
8.8
CVSSv3
CVE-2020-7081
A type confusion vulnerability in the Autodesk FBX-SDK versions 2019.0 and previous versions may lead to arbitary code read/write on the system running it.
Autodesk Fbx Software Development Kit
6.5
CVSSv3
CVE-2020-7083
An intager overflow vulnerability in the Autodesk FBX-SDK versions 2019.0 and previous versions may lead to denial of service of the application.
Autodesk Fbx Software Development Kit
7.8
CVSSv3
CVE-2020-7085
A heap overflow vulnerability in the Autodesk FBX-SDK versions 2019.2 and previous versions may lead to arbitrary code execution on a system running it.
Autodesk Fbx Software Development Kit
6.1
CVSSv3
CVE-2020-7106
Cacti 1.2.8 has stored XSS in data_sources.php, color_templates_item.php, graphs.php, graph_items.php, lib/api_automation.php, user_admin.php, and user_group_admin.php, as demonstrated by the description parameter in data_sources.php (a raw string from the database that is displa...
Cacti Cacti
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Opensuse Leap 15.1
Opensuse Backports Sle 15.0
Suse Package Hub -
Fedoraproject Fedora 30
Fedoraproject Fedora 31
Fedoraproject Extra Packages For Enterprise Linux 8.0
Fedoraproject Extra Packages For Enterprise Linux 9.0
Fedoraproject Extra Packages For Enterprise Linux 7.0
5.4
CVSSv3
CVE-2020-7108
The LearnDash LMS plugin prior to 3.1.2 for WordPress allows XSS via the ld-profile search field.
Learndash Learndash
9.8
CVSSv3
CVE-2020-7109
The Elementor Page Builder plugin prior to 2.8.4 for WordPress does not sanitize data during creation of a new template.
Elementor Website Builder
4.8
CVSSv3
CVE-2020-7110
ClearPass is vulnerable to Stored Cross Site Scripting by allowing a malicious administrator, or a compromised administrator account, to save malicious scripts within ClearPass that could be executed resulting in a privilege escalation attack. Resolution: Fixed in 6.7.13, 6.8.4, ...
Arubanetworks Clearpass
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-36954
CVE-2024-36933
CVE-2024-24919
CVE-2024-36923
CVE-2024-2961
CVE-2024-36925
bypass
encryption
command injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »