Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
toutvirtual virtualiq 3.5 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-4848
Multiple cross-site scripting (XSS) vulnerabilities in ToutVirtual VirtualIQ Pro 3.2 build 7882 and 3.5 build 8691 allow remote malicious users to inject arbitrary web script or HTML via the (1) userId parameter to tvserver/server/user/setPermissions.jsp, (2) deptName parameter t...
Toutvirtual Virtualiq 3.5
Toutvirtual Virtualiq 3.2
6.8
CVSSv2
CVE-2009-4849
Multiple cross-site request forgery (CSRF) vulnerabilities in ToutVirtual VirtualIQ Pro 3.2 build 7882 and 3.5 build 8691 allow remote malicious users to hijack the authentication of administrators for requests that (1) create a new user account via a save action to tvserver/user...
Toutvirtual Virtualiq 3.2
Toutvirtual Virtualiq 3.5
1 EDB exploit
4.3
CVSSv2
CVE-2009-4842
Multiple cross-site scripting (XSS) vulnerabilities in ToutVirtual VirtualIQ Pro 3.5 build 8691 allow remote malicious users to inject arbitrary web script or HTML via the (1) addNewDept, (2) deptId, or (3) deptDesc parameter to tvserver/server/user/addDepartment.jsp; or the (4) ...
Toutvirtual Virtualiq 3.5
7.5
CVSSv2
CVE-2009-4843
ToutVirtual VirtualIQ Pro prior to 3.5 build 8691 does not require administrative authentication for JBoss console access, which allows remote malicious users to execute arbitrary commands via requests to (1) the JMX Management Console or (2) the Web Console.
Toutvirtual Virtualiq 3.5
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started