Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cts vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2021-32542
The parameters of the specific functions in the CTS Web trading system do not filter special characters, which allows unauthenticated attackers can remotely perform reflected XSS and obtain the users’ connection token that triggered the attack.
Sysjust Cts Web
5.4
CVSSv3
CVE-2021-32543
The CTS Web transaction system related to authentication management is implemented incorrectly. After login, remote attackers can manipulate cookies to access other accounts and trade in the stock market with spoofed identity.
Sysjust Cts Web
5.3
CVSSv3
CVE-2021-32541
The CTS Web transaction system related to authentication and session management is implemented incorrectly, which allows remote unauthenticated attackers can send a large number of valid usernames, and force those logged-in account to log out, causing the user to be unable to acc...
Sysjust Cts Web
NA
CVE-2014-9455
SQL injection vulnerability in showads.php in CTS Projects & Software ClassAd 3.0 allows remote malicious users to execute arbitrary SQL commands via the catid parameter.
Cts Projects\\&software Classad 3.0
8.6
CVSSv3
CVE-2019-12663
A vulnerability in the Cisco TrustSec (CTS) Protected Access Credential (PAC) provisioning module of Cisco IOS XE Software could allow an unauthenticated, remote malicious user to cause a reload of an affected device, resulting in a denial of service (DoS) condition. The vulnerab...
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.6.4
NA
CVE-2011-0372
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.5.x allows remote malicious users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640.
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System 1000
Cisco Telepresence System 1100
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
Cisco Telepresence System 500 Series
NA
CVE-2011-0373
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31685.
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System 1000
Cisco Telepresence System 1100
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
Cisco Telepresence System 500 Series
NA
CVE-2011-0374
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.5.x allows remote authenticated users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31659.
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System 1100
Cisco Telepresence System 1000
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
Cisco Telepresence System 500 Series
NA
CVE-2011-0378
The XML-RPC implementation on Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.5.x allows remote malicious users to execute arbitrary commands via a TCP request, related to a "command injection vulnerability," aka Bug ID CSCtb52587.
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System 1100
Cisco Telepresence System 1000
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
Cisco Telepresence System 500 Series
NA
CVE-2011-0376
The TFTP implementation on Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.5.x, 1.6.0, and 1.6.1 allows remote malicious users to obtain sensitive information via a GET request, aka Bug ID CSCte43876.
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System 1000
Cisco Telepresence System 1100
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
Cisco Telepresence System Software 1.6.1
Cisco Telepresence System Software 1.6.0
Cisco Telepresence System 500 Series
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »