Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cloud vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2016-6125
IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session.
Ibm Kenexa Lms On Cloud 13.2
Ibm Kenexa Lms On Cloud 13.1
Ibm Kenexa Lms On Cloud 13.2.3
Ibm Kenexa Lms On Cloud 13.2.4
Ibm Kenexa Lms On Cloud 13.2.2
6.5
CVSSv3
CVE-2016-8913
IBM Kenexa LMS on Cloud 13.1 and 13.2 - 13.2.4 could allow a remote malicious user to traverse directories on the system. An attacker could send a specially-crafted URL request containing "dot dot" sequences (/../) to view arbitrary files on the system.
Ibm Kenexa Lms On Cloud 13.2.4
Ibm Kenexa Lms On Cloud 13.2.3
Ibm Kenexa Lms On Cloud 13.2.2
Ibm Kenexa Lms On Cloud 13.2
Ibm Kenexa Lms On Cloud 13.1
8.8
CVSSv3
CVE-2018-1192
In Cloud Foundry Foundation cf-release versions prior to v285; cf-deployment versions prior to v1.7; UAA 4.5.x versions before 4.5.5, 4.8.x versions before 4.8.3, and 4.7.x versions before 4.7.4; and UAA-release 45.7.x versions before 45.7, 52.7.x versions before 52.7, and 53.3.x...
Pivotal Software Cloud Foundry Uaa
Pivotal Software Cloud Foundry Uaa-release 53.3
Pivotal Software Cloud Foundry Uaa-release 52.7
Pivotal Software Cloud Foundry Uaa-release 45.7
Pivotal Software Cloud Foundry Cf-release
Pivotal Software Cloud Foundry Cf-deployment
4.3
CVSSv3
CVE-2023-22813
A device API endpoint was missing access controls on Western Digital My Cloud OS 5 iOS and Anroid Mobile Apps, My Cloud Home iOS and Android Mobile Apps, SanDisk ibi iOS and Android Mobile Apps, My Cloud OS 5 Web App, My Cloud Home Web App and the SanDisk ibi Web App. Due to a p...
Westerndigital My Cloud
Westerndigital Sandisk Ibi
Westerndigital My Cloud Home
Westerndigital My Cloud Os 5
5.3
CVSSv3
CVE-2018-1990
IBM Cloud App Management V2018.2.0, V2018.4.0, and V2018.4.1 could allow an malicious user to obtain sensitive configuration information using a specially crafted HTTP request. IBM X-Force ID: 154283.
Ibm Cloud App Management 2018.4.0
Ibm Cloud App Management 2018.4.1
Ibm Cloud App Management 2018.2.0
6.1
CVSSv3
CVE-2022-36417
Multiple Stored Cross-Site Scripting (XSS) via Cross-Site Request Forgery (CSRF) vulnerability in 3D Tag Cloud plugin <= 3.8 at WordPress.
3d Tag Cloud Project 3d Tag Cloud
7.5
CVSSv3
CVE-2018-13519
The mint function of a smart contract implementation for DigitalCloudToken, an Ethereum token, has an integer overflow that allows the owner of the contract to set the balance of an arbitrary user to any value.
Digital Cloud Token Project Digital Cloud Token -
6.1
CVSSv3
CVE-2023-28166
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Aakif Kadiwala Tags Cloud Manager plugin <= 1.0.0 versions.
Tags Cloud Manager Project Tags Cloud Manager
4.8
CVSSv3
CVE-2022-42462
Auth. Stored Cross-Site Scripting (XSS) vulnerability in Adeel Ahmed's IP Blacklist Cloud plugin <= 5.00 versions.
Ip Blacklist Cloud Project Ip Blacklist Cloud
8.8
CVSSv3
CVE-2023-28995
Cross-Site Request Forgery (CSRF) vulnerability in Keith Solomon Configurable Tag Cloud (CTC) plugin <= 5.2 versions.
Configurable Tag Cloud Project Configurable Tag Cloud
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »