Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
plus vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2020-11532
Zoho ManageEngine DataSecurity Plus before 6.0.1 uses default admin credentials to communicate with a DataEngine Xnode server. This allows an malicious user to bypass authentication for this server and execute all operations in the context of admin user.
Zohocorp Manageengine Datasecurity Plus
Zohocorp Manageengine Adaudit Plus
685
VMScore
CVE-2007-5009
PHP remote file inclusion vulnerability in language/lang_german/lang_main_album.php in phpBB Plus 1.53, and 1.53a prior to 20070922, allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Phpbb2 Phpbb2 Plus 1.53
Phpbb2 Phpbb2 Plus 1.53a
1 EDB exploit
NA
CVE-2022-45060
An HTTP Request Forgery issue exists in Varnish Cache 5.x and 6.x prior to 6.0.11, 7.x prior to 7.1.2, and 7.2.x prior to 7.2.1. An attacker may introduce characters through HTTP/2 pseudo-headers that are invalid in the context of an HTTP/1 request line, causing the Varnish serve...
Varnish-software Varnish Cache Plus 6.0.8
Varnish Cache Project Varnish Cache 7.2.0
Varnish Cache Project Varnish Cache
Varnish-software Varnish Cache Plus 6.0.10
Varnish-software Varnish Cache Plus 6.0.0
Varnish-software Varnish Cache Plus 6.0.1
Varnish-software Varnish Cache Plus 6.0.2
Varnish-software Varnish Cache Plus 6.0.3
Varnish-software Varnish Cache Plus 6.0.4
Varnish-software Varnish Cache Plus 6.0.5
Varnish-software Varnish Cache Plus 6.0.6
Varnish-software Varnish Cache Plus 6.0.7
Varnish-software Varnish Cache Plus 6.0.9
Varnish-software Varnish Cache
Fedoraproject Fedora 35
Fedoraproject Fedora 36
Fedoraproject Fedora 37
Debian Debian Linux 10.0
Debian Debian Linux 11.0
670
VMScore
CVE-2022-28219
Cewolf in Zoho ManageEngine ADAudit Plus prior to 7060 is vulnerable to an unauthenticated XXE attack that leads to Remote Code Execution.
Zohocorp Manageengine Adaudit Plus 7.0
Zohocorp Manageengine Adaudit Plus
5 Github repositories
445
VMScore
CVE-2021-37419
Zoho ManageEngine ADSelfService Plus prior to 6112 is vulnerable to SSRF.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 6.1
383
VMScore
CVE-2021-37420
Zoho ManageEngine ADSelfService Plus prior to 6112 is vulnerable to mail spoofing.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 6.1
668
VMScore
CVE-2021-37422
Zoho ManageEngine ADSelfService Plus 6111 and prior is vulnerable to SQL Injection while linking the databases.
Zohocorp Manageengine Adselfservice Plus 6.1
Zohocorp Manageengine Adselfservice Plus
668
VMScore
CVE-2021-37423
Zoho ManageEngine ADSelfService Plus 6111 and prior is vulnerable to linked applications takeover.
Zohocorp Manageengine Adselfservice Plus 6.1
Zohocorp Manageengine Adselfservice Plus
668
VMScore
CVE-2021-37424
ManageEngine ADSelfService Plus prior to 6112 is vulnerable to domain user account takeover.
Zohocorp Manageengine Admanager Plus
Zohocorp Manageengine Admanager Plus 6.1
668
VMScore
CVE-2021-37539
Zoho ManageEngine ADManager Plus prior to 7111 is vulnerable to unrestricted file which leads to Remote code execution.
Zohocorp Manageengine Admanager Plus 7.1
Zohocorp Manageengine Admanager Plus
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-28995
CVE-2024-36680
CVE-2024-35537
unauthorized
CVE-2024-21518
CVE-2024-37673
cross-site scripting
SSRF
CVE-2024-6241
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »