Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
profense web application firewall vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-1593
Armorlogic Profense Web Application Firewall prior to 2.2.22, and 2.4.x prior to 2.4.4, does not properly implement the "negative model," which allows remote malicious users to conduct cross-site scripting (XSS) attacks via a modified end tag of a SCRIPT element.
Armorlogic Profense Web Application Firewall 2.4
Armorlogic Profense Web Application Firewall
1 EDB exploit
7.5
CVSSv2
CVE-2009-1594
Armorlogic Profense Web Application Firewall prior to 2.2.22, and 2.4.x prior to 2.4.4, does not properly implement the "positive model," which allows remote malicious users to bypass certain protection mechanisms via a %0A (encoded newline), as demonstrated by a %0A in...
Armorlogic Profense Web Application Firewall 2.4
Armorlogic Profense Web Application Firewall
10
CVSSv2
CVE-2009-1745
Armorlogic Profense Web Application Firewall prior to 2.2.22, and 2.4.x prior to 2.4.4, has a default root password hash, and permits password-based root logins over SSH, which makes it easier for remote malicious users to obtain access.
Armorlogic Profense Web Application Firewall
Armorlogic Profense Web Application Firewall 2.4
4.3
CVSSv2
CVE-2009-0467
Cross-site scripting (XSS) vulnerability in proxy.html in Profense Web Application Firewall 2.6.2 and 2.6.3 allows remote malicious users to inject arbitrary web script or HTML via the proxy parameter in a deny_log manage action.
Armorlogic Profense Web Application Firewall 2.6.2
Armorlogic Profense Web Application Firewall 2.6.3
1 EDB exploit
6.8
CVSSv2
CVE-2009-0468
Multiple cross-site request forgery (CSRF) vulnerabilities in ajax.html in Profense Web Application Firewall 2.6.2 and 2.6.3 allow remote malicious users to hijack the authentication of administrators for requests that (1) shutdown the server, (2) send ping packets, (3) enable ne...
Armorlogic Profense Web Application Firewall 2.6.3
Armorlogic Profense Web Application Firewall 2.6.2
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started