Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file reporter vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-10035
A vulnerability was found in gperson angular-test-reporter and classified as critical. This issue affects the function getProjectTables/addTest of the file rest-server/data-server.js. The manipulation leads to sql injection. The patch is named a29d8ae121b46ebfa96a55a9106466ab2ef1...
Angular-test-reporter Project Angular-test-reporter
9.8
CVSSv3
CVE-2021-23355
This affects all versions of package ps-kill. If (attacker-controlled) user input is given to the kill function, it is possible for an malicious user to execute arbitrary commands. This is due to use of the child_process exec function without input sanitization in the index.js fi...
Ps-kill Project Ps-kill
9.8
CVSSv3
CVE-2017-11673
Reporter.exe in Acunetix 8 allows remote malicious users to execute arbitrary code or cause a denial of service (application crash) via a malformed PRE file, related to a "User Mode Write AV starting at reporter!madTraceProcess."
Acunetix Web Vulnerability Scanner 8
9.8
CVSSv3
CVE-2015-2874
Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware prior to 3.4.1.105 have a default password of root for the root account, which allows remote malicious users to obtain administrative access via a...
Seagate Wireless Plus Mobile Storage
Seagate Wireless Mobile Storage
Lacie Lac9000464u Firmware
Lacie Lac9000436u Firmware
Seagate Goflex Sattelite
8.8
CVSSv3
CVE-2021-30851
A memory corruption vulnerability was addressed with improved locking. This issue is fixed in Safari 15, tvOS 15, watchOS 8, iOS 15 and iPadOS 15. Processing maliciously crafted web content may lead to code execution.
Apple Watchos
Apple Tvos
Apple Ipados
Apple Iphone Os
Apple Safari
Apple Macos
Apple Macos 12.0.1
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
8.8
CVSSv3
CVE-2016-4965
Fortinet FortiWan (formerly AscernLink) prior to 4.2.5 allows remote authenticated users with access to the nslookup functionality to execute arbitrary commands with root privileges via the graph parameter to diagnosis_control.php.
Fortinet Fortiwan
8.8
CVSSv3
CVE-2016-5637
The restore_tqb_pixels function in libbpg 0.9.5 up to and including 0.9.7 mishandles the transquant_bypass_enable_flag value, which allows remote malicious users to execute arbitrary code or cause a denial of service (out-of-bounds write) via a crafted BPG image, related to a &qu...
Libbpg Project Libbpg
8.8
CVSSv3
CVE-2015-2876
Unrestricted file upload vulnerability on Seagate GoFlex Satellite, Seagate Wireless Mobile Storage, Seagate Wireless Plus Mobile Storage, and LaCie FUEL devices with firmware prior to 3.4.1.105 allows remote malicious users to execute arbitrary code by uploading a file to /media...
Lacie Lac9000436u Firmware
Lacie Lac9000464u Firmware
Seagate Wireless Plus Mobile Storage
Seagate Wireless Mobile Storage
Seagate Goflex Sattelite
8.1
CVSSv3
CVE-2017-3209
The DBPOWER U818A WIFI quadcopter drone provides FTP access over its own local access point, and allows full file permissions to the anonymous user. The DBPower U818A WIFI quadcopter drone runs an FTP server that by default allows anonymous access without a password, and provides...
Dbpower U818a Firmware -
7.8
CVSSv3
CVE-2021-30846
A memory corruption issue was addressed with improved memory handling. This issue is fixed in iOS 14.8 and iPadOS 14.8, Safari 15, tvOS 15, iOS 15 and iPadOS 15, watchOS 8. Processing maliciously crafted web content may lead to arbitrary code execution.
Apple Ipados
Apple Iphone Os
Apple Watchos
Apple Tvos
Apple Safari
Apple Macos
Debian Debian Linux 10.0
Debian Debian Linux 11.0
Fedoraproject Fedora 33
Fedoraproject Fedora 34
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »