Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloud vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2016-6126
IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.
Ibm Kenexa Lms On Cloud 13.2
Ibm Kenexa Lms On Cloud 13.2.4
Ibm Kenexa Lms On Cloud 13.2.3
Ibm Kenexa Lms On Cloud 13.2.2
Ibm Kenexa Lms On Cloud 13.1
6.5
CVSSv3
CVE-2016-8913
IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.
Ibm Kenexa Lms On Cloud 13.2.4
Ibm Kenexa Lms On Cloud 13.2.3
Ibm Kenexa Lms On Cloud 13.2.2
Ibm Kenexa Lms On Cloud 13.2
Ibm Kenexa Lms On Cloud 13.1
8.8
CVSSv3
CVE-2018-1192
In Cloud Foundry Foundation cf-release versions prior to v285; cf-deployment versions prior to v1.7; UAA 4.5.x versions before 4.5.5, 4.8.x versions before 4.8.3, and 4.7.x versions before 4.7.4; and UAA-release 45.7.x versions before 45.7, 52.7.x versions before 52.7, and 53.3.x...
Pivotal Software Cloud Foundry Uaa
Pivotal Software Cloud Foundry Uaa-release 53.3
Pivotal Software Cloud Foundry Uaa-release 52.7
Pivotal Software Cloud Foundry Uaa-release 45.7
Pivotal Software Cloud Foundry Cf-release
Pivotal Software Cloud Foundry Cf-deployment
5.3
CVSSv3
CVE-2018-1990
IBM Cloud App Management V2018.2.0, V2018.4.0, and V2018.4.1 could allow an malicious user to obtain sensitive configuration information using a specially crafted HTTP request. IBM X-Force ID: 154283.
Ibm Cloud App Management 2018.4.0
Ibm Cloud App Management 2018.4.1
Ibm Cloud App Management 2018.2.0
4.3
CVSSv3
CVE-2023-22813
A device API endpoint was missing access controls on Western Digital My Cloud OS 5 iOS and Anroid Mobile Apps, My Cloud Home iOS and Android Mobile Apps, SanDisk ibi iOS and Android Mobile Apps, My Cloud OS 5 Web App, My Cloud Home Web App and the SanDisk ibi Web App. Due to a p...
Westerndigital My Cloud
Westerndigital Sandisk Ibi
Westerndigital My Cloud Home
Westerndigital My Cloud Os 5
6.1
CVSSv3
CVE-2023-5914
Cross-site scripting (XSS)
Cloud Citrix Storefront 1912
Cloud Citrix Storefront
7.5
CVSSv3
CVE-2018-13519
The mint function of a smart contract implementation for DigitalCloudToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
Digital Cloud Token Project Digital Cloud Token -
6.1
CVSSv3
CVE-2022-36417
Multiple Stored Cross-Site Scripting (XSS) via Cross-Site Request Forgery (CSRF) vulnerability in 3D Tag Cloud plugin <= 3.8 at WordPress.
3d Tag Cloud Project 3d Tag Cloud
4.8
CVSSv3
CVE-2022-2412
The Better Tag Cloud WordPress plugin up to and including 0.99.5 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks when the unfiltered_html capability is disallowed (for example i...
Better Tag Cloud Project Better Tag Cloud
NA
CVE-2011-2654
The RPC implementation in the server in Novell Cloud Manager 1.1.2 before Patch 3 does not properly initialize objects, which allows remote malicious users to execute arbitrary code by making RPC calls that leverage incorrect privileges associated with a partially initialized ses...
Novell Cloud Manager 1.1.2
Novell Cloud Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »