Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
multi server vulnerabilities and exploits
(subscribe to this query)
7.1
CVSSv2
CVE-2012-6530
Stack-based buffer overflow in Sysax Multi Server prior to 5.52, when HTTP is enabled, allows remote authenticated users with the create folder permission to execute arbitrary code via a crafted request.
Sysax Multi Server 4.5
Sysax Multi Server 4.3
Sysax Multi Server
2 EDB exploits
4
CVSSv2
CVE-2009-4800
Directory traversal vulnerability in Sysax Multi Server 4.3 and 4.5 allows remote authenticated users to delete arbitrary files via a ..// (dot dot slash slash) in a DELE command.
Sysax Multi Server 4.5
Sysax Multi Server 4.3
1 EDB exploit
4.3
CVSSv2
CVE-2020-13228
An issue exists in Sysax Multi Server 6.90. There is reflected XSS via the /scgi sid parameter.
Sysax Multi Server 6.90
1 Github repository
9
CVSSv2
CVE-2009-4790
Multiple directory traversal vulnerabilities in Sysax Multi Server 4.5 allow remote authenticated users to read or modify arbitrary files via crafted FTP commands. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Sysax Multi Server 4.5
1 EDB exploit
4
CVSSv2
CVE-2020-23574
When uploading a file in Sysax Multi Server 6.90, an authenticated user can modify the filename="" parameter in the uploadfile_name1.htm form to a length of 368 or more bytes. This will create a buffer overflow condition, causing the application to crash.
Sysax Multi Server 6.90
5
CVSSv2
CVE-2020-13227
An issue exists in Sysax Multi Server 6.90. An attacker can determine the username (under which the web server is running) by triggering an invalid path permission error. This bypasses the fakepath protection mechanism.
Sysax Multi Server 6.90
1 Github repository
6.8
CVSSv2
CVE-2020-13229
An issue exists in Sysax Multi Server 6.90. A session can be hijacked if one observes the sid value in any /scgi URI, because it is an authentication token.
Sysax Multi Server 6.90
1 Github repository
7.2
CVSSv2
CVE-2009-0912
perl-MDK-Common 1.1.11 and 1.1.24, 1.2.9 up to and including 1.2.14, and possibly other versions, in Mandriva Linux does not properly handle strings when writing them to configuration files, which allows malicious users to gain privileges via "special characters" in uns...
Mandriva Linux 2008.1
Mandriva Linux 2008.0
Mandriva Linux Corporate Server 3.0
Mandriva Multi Network Firewall 2.0
Mandriva Linux Corporate Server 4.0
Mandriva Linux 2009.0
7.5
CVSSv2
CVE-2020-13392
An issue exists on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. W...
Tendacn Ac6 Firmware V15.03.05.19 Multi Td01
Tendacn Ac9 Firmware V15.03.05.19(6318)
Tendacn Ac15 Firmware V15.03.05.19 Multi Td01
Tendacn Ac18 Firmware V15.03.05.19(6318)
Tendacn Ac9 Firmware V15.03.06.42 Multi
7.5
CVSSv2
CVE-2020-13391
An issue exists on Tenda AC6 V1.0 V15.03.05.19_multi_TD01, AC9 V1.0 V15.03.05.19(6318)_CN, AC9 V3.0 V15.03.06.42_multi, AC15 V1.0 V15.03.05.19_multi_TD01, and AC18 V15.03.05.19(6318_)_CN devices. There is a buffer overflow vulnerability in the router's web server -- httpd. W...
Tendacn Ac6 Firmware V15.03.05.19 Multi Td01
Tendacn Ac9 Firmware V15.03.05.19(6318)
Tendacn Ac15 Firmware V15.03.05.19 Multi Td01
Tendacn Ac18 Firmware V15.03.05.19(6318)
Tendacn Ac9 Firmware V15.03.06.42 Multi
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
server-side request forgery
CVE-2024-30067
CVE-2024-5553
CVE-2024-30095
IDOR
CVE-2024-35252
CVE-2024-23692
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »