Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sec consult vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2019-16172
LimeSurvey before v3.17.14 allows stored XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. The attack uses a survey group in which the title contains JavaScript that is mishandled upon group deletion.
Limesurvey Limesurvey
1 EDB exploit
5.4
CVSSv3
CVE-2019-16173
LimeSurvey before v3.17.14 allows reflected XSS for escalating privileges from a low-privileged account to, for example, SuperAdmin. This occurs in application/core/Survey_Common_Action.php,
Limesurvey Limesurvey
1 EDB exploit
5.4
CVSSv3
CVE-2021-20562
IBM Sterling B2B Integrator Standard Edition 5.2.0.0 up to and including 5.2.6.5_3 and 6.1.0.0 up to and including 6.1.0.2 vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality...
Ibm Sterling B2b Integrator
NA
CVE-2023-49114
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met.
6
CVSSv3
CVE-2023-6253
A saved encryption key in the Uninstaller in Digital Guardian's Agent before version 7.9.4 allows a local malicious user to retrieve the uninstall key and remove the software by extracting the uninstaller key from the memory of the uninstaller file.
Fortra Digital Guardian Agent
9.8
CVSSv3
CVE-2020-11951
An issue exists on Rittal PDU-3C002DEC up to and including 5.17.10 and CMCIII-PU-9333E0FB up to and including 3.17.10 devices. There is a Backdoor root account.
Rittal Cmciii-pu-9333e0fb Firmware
Rittal Pdu-3c002dec Firmware
Rittal Cmc Iii Pu 7030.000 Firmware
Rittal Lcp-cw Firmware
Rittal Iot Interface 3124.300
6.2
CVSSv3
CVE-2020-11952
An issue exists on Rittal PDU-3C002DEC up to and including 5.17.10 and CMCIII-PU-9333E0FB up to and including 3.17.10 devices. Attackers can bypass the CLI menu.
Rittal Cmciii-pu-9333e0fb Firmware
Rittal Pdu-3c002dec Firmware
Rittal Cmc Iii Pu 7030.000 Firmware
Rittal Lcp-cw Firmware
Rittal Iot Interface 3124.300
8.8
CVSSv3
CVE-2020-11953
An issue exists on Rittal PDU-3C002DEC up to and including 5.15.40 and CMCIII-PU-9333E0FB up to and including 3.15.70_4 devices. Attackers can execute code.
Rittal Cmciii-pu-9333e0fb Firmware
Rittal Pdu-3c002dec Firmware
Rittal Cmc Iii Pu 7030.000 Firmware
Rittal Lcp-cw Firmware
Rittal Iot Interface 3124.300
8.8
CVSSv3
CVE-2020-11955
An issue exists on Rittal PDU-3C002DEC up to and including 5.15.70 and CMCIII-PU-9333E0FB up to and including 3.15.70 devices. There are insecure permissions.
Rittal Cmciii-pu-9333e0fb Firmware
Rittal Pdu-3c002dec Firmware
Rittal Cmc Iii Pu 7030.000 Firmware
Rittal Lcp-cw Firmware
Rittal Iot Interface 3124.300
9.8
CVSSv3
CVE-2020-11956
An issue exists on Rittal PDU-3C002DEC up to and including 5.17.10 and CMCIII-PU-9333E0FB up to and including 3.17.10 devices. There is a least privilege violation.
Rittal Cmciii-pu-9333e0fb Firmware
Rittal Pdu-3c002dec Firmware
Rittal Cmc Iii Pu 7030.000 Firmware
Rittal Lcp-cw Firmware
Rittal Iot Interface 3124.300
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »