Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
log injection vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2021-1474
Multiple vulnerabilities in the Admin audit log export feature and Scheduled Reports feature of Cisco Umbrella could allow an authenticated, remote malicious user to perform formula and link injection attacks on an affected device. For more information about these vulnerabilities...
Cisco Umbrella -
312
VMScore
CVE-2021-1475
Multiple vulnerabilities in the Admin audit log export feature and Scheduled Reports feature of Cisco Umbrella could allow an authenticated, remote malicious user to perform formula and link injection attacks on an affected device. For more information about these vulnerabilities...
Cisco Umbrella -
265
VMScore
CVE-2006-0733
Cross-site scripting (XSS) vulnerability in WordPress 2.0.0 allows remote malicious users to inject arbitrary web script or HTML via scriptable attributes such as (1) onfocus and (2) onblur in the "author's website" field. NOTE: followup comments to the researcher&...
Wordpress Wordpress 2.0
1 EDB exploit
668
VMScore
CVE-2008-1926
Argument injection vulnerability in login (login-utils/login.c) in util-linux-ng 2.14 and previous versions makes it easier for remote malicious users to hide activities by modifying portions of log events, as demonstrated by appending an "addr=" statement to the login ...
Linux Util-linux 2.13.0.1
Linux Util-linux 2.13
Linux Util-linux 2.13.1
Linux Util-linux 2.13.1.1
Linux Util-linux 2.14
685
VMScore
CVE-2003-0521
Cross-site scripting (XSS) vulnerability in cPanel 6.4.2 allows remote malicious users to insert arbitrary HTML and possibly gain cPanel administrator privileges via script in a URL that is logged but not properly quoted when displayed via the (1) Error Log or (2) Latest Visitors...
Cpanel Cpanel 6.2
Cpanel Cpanel 6.4
Cpanel Cpanel 6.4.1
Cpanel Cpanel 6.4.2
Cpanel Cpanel 5.0
Cpanel Cpanel 6.4.2 Stable 48
Cpanel Cpanel 5.3
Cpanel Cpanel 6.0
1 EDB exploit
685
VMScore
CVE-2007-2191
Multiple cross-site scripting (XSS) vulnerabilities in freePBX 2.2.x allow remote malicious users to inject arbitrary web script or HTML via the (1) From, (2) To, (3) Call-ID, (4) User-Agent, and unspecified other SIP protocol fields, which are stored in /var/log/asterisk/full an...
Freepbx Freepbx 2.2.1
Freepbx Freepbx 2.2 Rc1
1 EDB exploit
445
VMScore
CVE-2014-2179
The Cisco RV router firmware on RV220W devices, prior to 1.0.5.9 on RV120W devices, and prior to 1.0.4.14 on RV180 and RV180W devices allows remote malicious users to upload files to arbitrary locations via a crafted HTTP request, aka Bug ID CSCuh86998.
Cisco Rv180 Firmware
Cisco Rv180 -
Cisco Rv180w -
Cisco Rv120w Firmware
Cisco Rv120w -
Cisco Rv220w Firmware
Cisco Rv220w -
NA
CVE-2023-49897
An OS command injection vulnerability exists in AE1021PE firmware version 2.0.9 and previous versions and AE1021 firmware version 2.0.9 and previous versions. If this vulnerability is exploited, an arbitrary OS command may be executed by an attacker who can log in to the product.
Fxc Ae1021 Firmware
Fxc Ae1021pe Firmware
801
VMScore
CVE-2014-2177
The network-diagnostics administration interface in the Cisco RV router firmware on RV220W devices, prior to 1.0.5.9 on RV120W devices, and prior to 1.0.4.14 on RV180 and RV180W devices allows remote authenticated users to execute arbitrary commands via a crafted HTTP request, ak...
Cisco Rv120w Firmware
Cisco Rv120w -
Cisco Rv220w Firmware
Cisco Rv220w -
Cisco Rv180 Firmware
Cisco Rv180w -
Cisco Rv180 -
801
VMScore
CVE-2019-1862
A vulnerability in the web-based user interface (Web UI) of Cisco IOS XE Software could allow an authenticated, remote malicious user to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected softwa...
Cisco Ios Xe 16.3.7
1 Article
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »