Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
access vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-43870
When installing the Net2 software a root certificate is installed into the trusted store. A potential hacker could access the installer batch file or reverse engineer the source code to gain access to the root certificate password. Using the root certificate and password they cou...
Paxton-access Net2 6.07
Paxton-access Net2
8
CVSSv3
CVE-2022-38059
Cross-Site Request Forgery (CSRF) vulnerability in Alexey Trofimov's Access Code Feeder plugin <= 1.0.3 at WordPress.
Access Code Feeder Project Access Code Feeder
NA
CVE-2009-4878
Unspecified vulnerability in the Administration Console in Novell Access Manager prior to 3.1 SP1 allows malicious users to access system files via unknown attack vectors.
Novell Access Manager
Novell Access Manager 3
NA
CVE-2009-4879
The Identity Server in Novell Access Manager prior to 3.1 SP1 allows attackers with disabled Active Directory accounts to authenticate using X.509 authentication, which bypasses intended access restrictions.
Novell Access Manager 3
Novell Access Manager
NA
CVE-2015-3386
Cross-site scripting (XSS) vulnerability in the Node Access Product module for Drupal allows remote authenticated users to inject arbitrary web script or HTML via a node title.
Node Access Product Project Node Access Product
NA
CVE-2007-0628
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Access Manager 6.1, 6.2, 6 2005Q1 (6.3), and 7 2005Q4 (7.0) prior to 20070129 allow remote malicious users to inject arbitrary web script or HTML via the (1) goto or (2) gx-charset parameter. NOTE: some of the...
Sun Java System Access Manager 7.0
Sun Java System Access Manager 6.2
Sun Java System Access Manager 6.3
Sun Java System Access Manager 6.1
NA
CVE-2011-2679
Cross-site scripting (XSS) vulnerability in IBM Rational DOORS Web Access 1.4.x prior to 1.4.0.4 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Ibm Rational Doors Web Access 1.4
Ibm Rational Doors Web Access 1.4.0.1
Ibm Rational Doors Web Access 1.4.0.2
Ibm Rational Doors Web Access 1.4.0.3
NA
CVE-2011-2680
Unspecified vulnerability in IBM Rational DOORS Web Access 1.4.x prior to 1.4.0.4 has unknown impact and remote attack vectors related to the "server error response."
Ibm Rational Doors Web Access 1.4.0.1
Ibm Rational Doors Web Access 1.4.0.2
Ibm Rational Doors Web Access 1.4
Ibm Rational Doors Web Access 1.4.0.3
NA
CVE-2011-2681
IBM Rational DOORS Web Access 1.4.x prior to 1.4.0.4 does not properly handle exceptions, which has unspecified impact and remote attack vectors.
Ibm Rational Doors Web Access 1.4
Ibm Rational Doors Web Access 1.4.0.1
Ibm Rational Doors Web Access 1.4.0.2
Ibm Rational Doors Web Access 1.4.0.3
NA
CVE-2011-2682
The Login component in IBM Rational DOORS Web Access 1.4.x prior to 1.4.0.4 allows remote authenticated users to cause a denial of service (license consumption) by trying to login to DOORS Web Access with a new user account that has never been used for a DOORS login.
Ibm Rational Doors Web Access 1.4.0.2
Ibm Rational Doors Web Access 1.4.0.3
Ibm Rational Doors Web Access 1.4
Ibm Rational Doors Web Access 1.4.0.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »