Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sec-consult.com vulnerabilities and exploits
(subscribe to this query)
6
CVSSv2
CVE-2013-3321
NetApp OnCommand System Manager 2.1 and previous versions allows remote malicious users to include arbitrary files through specially crafted requests to the "diagnostic" page using the SnapMirror log path parameter.
Netapp Oncommand System Manager
9
CVSSv2
CVE-2013-3322
NetApp OnCommand System Manager 2.1 and previous versions allows remote malicious users to inject arbitrary commands in the Halt/Reboot interface.
Netapp Oncommand System Manager
5.5
CVSSv2
CVE-2020-7032
An XML external entity (XXE) vulnerability in Avaya WebLM admin interface allows authenticated users to read arbitrary files or conduct server-side request forgery (SSRF) attacks via a crafted DTD in an XML request. Affected versions of Avaya WebLM include: 7.0 up to and includin...
Avaya Aura System Manager
Avaya Weblm
NA
CVE-2022-31201
SoftGuard Web (SGW) prior to 5.1.5 allows HTML injection.
Monitoringsoft Softguard Web
6.8
CVSSv2
CVE-2020-12511
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a Cross-Site Request Forgery (CSRF) in the web interface.
Pepperl-fuchs Io-link Master 4-eip Firmware
Pepperl-fuchs Io-link Master 8-eip Firmware
Pepperl-fuchs Io-link Master 8-eip-l Firmware
Pepperl-fuchs Io-link Master Dr-8-eip Firmware
Pepperl-fuchs Io-link Master Dr-8-eip-p Firmware
Pepperl-fuchs Io-link Master Dr-8-eip-t Firmware
Pepperl-fuchs Io-link Master 4-pnio Firmware
Pepperl-fuchs Io-link Master 8-pnio Firmware
Pepperl-fuchs Io-link Master 8-pnio-l Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio-p Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio-t Firmware
3.5
CVSSv2
CVE-2020-12512
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated reflected POST Cross-Site Scripting
Pepperl-fuchs Io-link Master 4-eip Firmware
Pepperl-fuchs Io-link Master 8-eip Firmware
Pepperl-fuchs Io-link Master 8-eip-l Firmware
Pepperl-fuchs Io-link Master Dr-8-eip Firmware
Pepperl-fuchs Io-link Master Dr-8-eip-p Firmware
Pepperl-fuchs Io-link Master Dr-8-eip-t Firmware
Pepperl-fuchs Io-link Master 4-pnio Firmware
Pepperl-fuchs Io-link Master 8-pnio Firmware
Pepperl-fuchs Io-link Master 8-pnio-l Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio-p Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio-t Firmware
9
CVSSv2
CVE-2020-12513
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to an authenticated blind OS Command Injection.
Pepperl-fuchs Io-link Master 4-eip Firmware
Pepperl-fuchs Io-link Master 8-eip Firmware
Pepperl-fuchs Io-link Master 8-eip-l Firmware
Pepperl-fuchs Io-link Master Dr-8-eip Firmware
Pepperl-fuchs Io-link Master Dr-8-eip-p Firmware
Pepperl-fuchs Io-link Master Dr-8-eip-t Firmware
Pepperl-fuchs Io-link Master 4-pnio Firmware
Pepperl-fuchs Io-link Master 8-pnio Firmware
Pepperl-fuchs Io-link Master 8-pnio-l Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio-p Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio-t Firmware
4
CVSSv2
CVE-2020-12514
Pepperl+Fuchs Comtrol IO-Link Master in Version 1.5.48 and below is prone to a NULL Pointer Dereference that leads to a DoS in discoveryd
Pepperl-fuchs Io-link Master 4-eip Firmware
Pepperl-fuchs Io-link Master 8-eip Firmware
Pepperl-fuchs Io-link Master 8-eip-l Firmware
Pepperl-fuchs Io-link Master Dr-8-eip Firmware
Pepperl-fuchs Io-link Master Dr-8-eip-p Firmware
Pepperl-fuchs Io-link Master Dr-8-eip-t Firmware
Pepperl-fuchs Io-link Master 4-pnio Firmware
Pepperl-fuchs Io-link Master 8-pnio Firmware
Pepperl-fuchs Io-link Master 8-pnio-l Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio-p Firmware
Pepperl-fuchs Io-link Master Dr-8-pnio-t Firmware
NA
CVE-2023-26213
On Barracuda CloudGen WAN Private Edge Gateway devices prior to 8 webui-sdwan-1089-8.3.1-174141891, an OS command injection vulnerability exists in /ajax/update_certificate - a crafted HTTP request allows an authenticated malicious user to execute arbitrary commands. For example,...
Barracuda T100b Firmware 8.3.1
Barracuda T200c Firmware 8.3.1
Barracuda T400c Firmware 8.3.1
Barracuda T600d Firmware 8.3.1
Barracuda T900b Firmware 8.3.1
Barracuda T93a Firmware 8.3.1
Barracuda T193a Firmware 8.3.1
6.5
CVSSv2
CVE-2019-16744
eBrigade prior to 5.0 has evenements.php cid SQL Injection.
Ebrigade Ebrigade
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »