Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
muts vulnerabilities and exploits
(subscribe to this query)
435
VMScore
CVE-2012-4344
Cross-site scripting (XSS) vulnerability in Ipswitch WhatsUp Gold 15.02 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors involving the SNMP system name of the attacking host.
Ipswitch Whatsup Gold 15.02
1 EDB exploit
785
VMScore
CVE-2005-4456
Multiple buffer overflows in MailEnable Professional 1.71 and Enterprise 1.1 before patch ME-10009 allow remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via long (1) LIST, (2) LSUB, and (3) UID FETCH commands. NOTE: it is possible t...
Mailenable Mailenable Enterprise 1.1
Mailenable Mailenable Professional 1.71
1 EDB exploit
1000
VMScore
CVE-2012-2576
SQL injection vulnerability in the LoginServlet page in SolarWinds Storage Manager prior to 5.1.2, SolarWinds Storage Profiler prior to 5.1.2, and SolarWinds Backup Profiler prior to 5.1.2 allows remote malicious users to execute arbitrary SQL commands via the loginName field.
Solarwinds Storage Profiler
Solarwinds Backup Profiler
Solarwinds Storage Manager
1 EDB exploit
435
VMScore
CVE-2012-2577
Multiple cross-site scripting (XSS) vulnerabilities in SolarWinds Orion Network Performance Monitor (NPM) prior to 10.3.1 allow remote malicious users to inject arbitrary web script or HTML via the (1) syslocation, (2) syscontact, or (3) sysName field of an snmpd.conf file.
Solarwinds Orion Network Performance Monitor 7.8.5
Solarwinds Orion Network Performance Monitor 8.5
Solarwinds Orion Network Performance Monitor 8.5.1
Solarwinds Orion Network Performance Monitor 9.1
Solarwinds Orion Network Performance Monitor 10.1
Solarwinds Orion Network Performance Monitor 10.0
Solarwinds Orion Network Performance Monitor
Solarwinds Orion Network Performance Monitor 9.0
Solarwinds Orion Network Performance Monitor 9.5.1
1 EDB exploit
NA
CVE-2012-2589
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2012-4344. Reason: This candidate is a duplicate of CVE-2012-4344. Notes: All CVE users should reference CVE-2012-4344 instead of this candidate. All references and descriptions in this candidate have been removed...
1 EDB exploit
437
VMScore
CVE-2012-2593
Cross-site scripting (XSS) vulnerability in the administrative interface in Atmail Webmail Server 6.4 allows remote malicious users to inject arbitrary web script or HTML via the Date field of an email.
Atmail Atmail 6.4.0
1 EDB exploit
8 Github repositories
755
VMScore
CVE-2012-2601
SQL injection vulnerability in WrVMwareHostList.asp in Ipswitch WhatsUp Gold 15.02 allows remote malicious users to execute arbitrary SQL commands via the sGroupList parameter.
Ipswitch Whatsup Gold 15.02
1 EDB exploit
685
VMScore
CVE-2012-2602
Multiple cross-site request forgery (CSRF) vulnerabilities in SolarWinds Orion Network Performance Monitor (NPM) prior to 10.3.1 allow remote malicious users to hijack the authentication of administrators for requests that (1) create user accounts via CreateUserStepContainer acti...
Solarwinds Orion Network Performance Monitor 10.1.13.0
Solarwinds Orion Network Performance Monitor
1 EDB exploit
725
VMScore
CVE-2012-2957
The management console in Symantec Web Gateway 5.0.x prior to 5.0.3.18 allows local users to gain privileges by modifying files, related to a "file inclusion" issue.
Symantec Web Gateway 5.0
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.1
1 EDB exploit
755
VMScore
CVE-2012-2961
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x prior to 5.0.3.18 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »