Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
field test vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-16252
The Field Test gem 0.2.0 up to and including 0.3.2 for Ruby allows CSRF.
Field Test Project Field Test
445
VMScore
CVE-2019-13146
The field_test gem 0.3.0 for Ruby has unvalidated input. A method call that is expected to return a value from a certain set of inputs can be made to return any input, which can be dangerous depending on how applications use it. If an application treats arbitrary variants as trus...
Field Test Project Field Test 0.3.0
312
VMScore
CVE-2019-19678
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the generic field entry point via the Generic Test Definition field of a new Generic Test issue.
Xpand-it Xray Test Mangaement
755
VMScore
CVE-2008-5959
Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). NOTE: some of these details are obtained from...
Active Web Softwares Active Test 2.1
1 EDB exploit
312
VMScore
CVE-2019-19679
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the Pre-Condition Summary entry point via the summary field of a Create Pre-Condition action for a new Test Issue.
Xpand-it Xray Test Mangaement
356
VMScore
CVE-2021-22134
A document disclosure flaw was found in Elasticsearch versions after 7.6.0 and prior to 7.11.0 when Document or Field Level Security is used. Get requests do not properly apply security permissions when executing a query against a recently updated document. This affects documents...
Elastic Elasticsearch
Oracle Communications Cloud Native Core Automated Test Suite 1.8.0
668
VMScore
CVE-2005-3733
The Internet Key Exchange version 1 (IKEv1) implementation in Juniper JUNOS and JUNOSe software for M, T, and J-series routers before release 6.4, and E-series routers prior to 7-1-0, allows remote malicious users to cause a denial of service and possibly execute arbitrary code v...
Juniper Junos M
Juniper Junos J
Juniper Junose M
Juniper Junos T
Juniper Junose E
Juniper Junos E
Juniper Junose J
Juniper Junose T
668
VMScore
CVE-2005-3915
The Internet Key Exchange version 1 (IKEv1) implementation in Clavister Client Web allows remote malicious users to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOTE: due to the l...
Clavister Clavister Firewall 8.30.01
Clavister Clavister Security Gateway 8.60.01 Rc1
Clavister Clavister Security Gateway 8.50.02
Clavister Clavister Security Gateway 8.40.05
694
VMScore
CVE-2005-3985
The Internet Key Exchange version 1 (IKEv1) implementation in Astaro Security Linux prior to 6.102 allows remote malicious users to cause a denial of service and possibly execute arbitrary code via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NO...
Astaro Security Linux 6.101
Astaro Security Linux 6.001
Astaro Security Linux 6.002
694
VMScore
CVE-2005-4321
The Internet Key Exchange version 1 (IKEv1) implementation in Apani Networks EpiForce 1.9 and previous versions running IPSec, allow remote malicious users to cause a denial of service (crash) via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOT...
Apani Networks Epiforce Agent
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27802
template injection
CVE-2024-0044
code injection
CVE-2024-35474
CVE-2024-27857
CVE-2024-23251
CVE-2024-23692
physical
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »