Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
admin vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-33929
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in Joaquín Ruiz Easy Admin Menu plugin <= 1.3 versions.
Jokiruiz Easy Admin Menu
NA
CVE-2023-5844
Unverified Password Change in GitHub repository pimcore/admin-ui-classic-bundle before 1.2.0.
Pimcore Admin Classic Bundle
7.2
CVSSv2
CVE-2019-17201
FastTrack Admin By Request 6.1.0.0 supports group policies that are supposed to allow only a select range of users to elevate to Administrator privilege at will. When a user requests elevation using the AdminByRequest.exe interface, the interface communicates with the underlying ...
Fasttracksoftware Admin By Request
NA
CVE-2023-42280
mee-admin 1.5 is vulnerable to Directory Traversal. The download method in the CommonFileController.java file does not verify the incoming data, resulting in arbitrary file reading.
Springernature Mee-admin 1.5
NA
CVE-2023-33736
A stored cross-site scripting (XSS) vulnerability in Dcat-Admin v2.1.3-beta allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the URL parameter.
Dcatadmin Dcat Admin 2.1.3
NA
CVE-2023-47636
The Pimcore Admin Classic Bundle provides a Backend UI for Pimcore. Full Path Disclosure (FPD) vulnerabilities enable the malicious user to see the path to the webroot/file. e.g.: /home/omg/htdocs/file/. Certain vulnerabilities, such as using the load_file() (within a SQL Injecti...
Pimcore Admin Classic Bundle
NA
CVE-2023-49075
The Admin Classic Bundle provides a Backend UI for Pimcore. `AdminBundle\Security\PimcoreUserTwoFactorCondition` introduced in v11 disable the two factor authentication for all non-admin security firewalls. An authenticated user can access the system without having to provide the...
Pimcore Admin Classic Bundle
NA
CVE-2023-29347
Windows Admin Center Spoofing Vulnerability
Microsoft Windows Admin Center
NA
CVE-2023-37280
Pimcore Admin Classic Bundle provides a Backend UI for Pimcore based on the ExtJS framework. An admin who has not setup two factor authentication before is vulnerable for this attack, without need for any form of privilege, causing the application to execute arbitrary scripts/HTM...
Pimcore Admin Classic Bundle
5.8
CVSSv2
CVE-2021-3799
grav-plugin-admin is vulnerable to Improper Restriction of Rendered UI Layers or Frames
Getgrav Grav-plugin-admin
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »