Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
infinite automation systems mango automation 2.5.0 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-6493
Cross-site request forgery (CSRF) vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x up to and including 2.6.0 build 430 allows remote authenticated users to hijack the authentication of unspecified victims via unknown vectors.
Infinite Automation Systems Mango Automation 2.6.0
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
1 EDB exploit
NA
CVE-2015-6494
Cross-site scripting (XSS) vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors.
Infinite Automation Systems Mango Automation 2.6.0
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
1 EDB exploit
NA
CVE-2015-7900
Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 allows remote malicious users to obtain sensitive debugging information by entering a crafted URL to trigger an exception, and then visiting a certain status page.
Infinite Automation Systems Mango Automation 2.6.0
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
1 EDB exploit
NA
CVE-2015-7901
Infinite Automation Mango Automation 2.5.x and 2.6.x up to and including 2.6.0 build 430 allows remote authenticated users to execute arbitrary OS commands via unspecified vectors.
Infinite Automation Systems Mango Automation 2.6.0
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
2 EDB exploits
NA
CVE-2015-7902
Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 provides different error messages for failed login attempts in unspecified circumstances, which allows remote malicious users to obtain sensitive information via a series of requests.
Infinite Automation Systems Mango Automation 2.6.0
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
1 EDB exploit
NA
CVE-2015-7903
SQL injection vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Infinite Automation Systems Mango Automation 2.6.0
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
1 EDB exploit
NA
CVE-2015-7904
Unrestricted file upload vulnerability in Infinite Automation Mango Automation 2.5.x and 2.6.x prior to 2.6.0 build 430 allows remote authenticated users to execute arbitrary JSP code via vectors involving an upload of an image file.
Infinite Automation Systems Mango Automation 2.6.0
Infinite Automation Systems Mango Automation 2.5.0
Infinite Automation Systems Mango Automation 2.5.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30078
CVE-2024-37896
code injection
CVE-2024-3080
CVE-2024-5172
cross-site request forgery
CVE-2024-6111
firmware
CVE-2024-38504
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started