Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
project server vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2021-43462
A Cross Site Scripting (XSS) vulnerability exists in Rumble Mail Server 0.51.3135 via the username parameter.
Rumble Mail Server Project Rumble Mail Server 0.51.3135
NA
CVE-2006-2141
Cross-site scripting (XSS) vulnerability in popup_image in Collaborative Portal Server (CPS) 3.4.0 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the pos argument.
Collaborative Portal Server Project Collaborative Portal Server 3.4.0
1 EDB exploit
6.5
CVSSv3
CVE-2009-4053
Multiple directory traversal vulnerabilities in Home FTP Server 1.10.1.139 allow remote authenticated users to (1) create arbitrary directories via directory traversal sequences in an MKD command or (2) create files with any contents in arbitrary directories via directory travers...
Home Ftp Server Project Home Ftp Server 1.10.1.139
1 EDB exploit
9.8
CVSSv3
CVE-2018-18861
Buffer overflow in PCMan FTP Server 2.0.7 allows for remote code execution via the APPE command.
Pcman Ftp Server Project Pcman Ftp Server 2.0.7
7.5
CVSSv3
CVE-2022-25848
This affects all versions of package static-dev-server. This is because when paths from users to the root directory are joined, the assets for the path accessed are relative to that of the root directory.
Static-dev-server Project Static-dev-server 1.0.0
7.5
CVSSv3
CVE-2018-16493
A path traversal vulnerability was found in module static-resource-server 1.7.2 that allows unauthorized read access to any file on the server by appending slashes in the URL.
Static-resource-server Project Static-resource-server 1.7.2
5.5
CVSSv3
CVE-2004-0342
WFTPD Pro Server 3.21 Release 1, with the XeroxDocutech option enabled, allows local users to cause a denial of service (crash) via a (1) MKD or (2) XMKD command that causes an absolute path of 260 characters to be used, which overwrites a cookie with a null character, possibly d...
Wftpd Pro Server Project Wftpd Pro Server 3.21
8.8
CVSSv3
CVE-2018-0909
Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique f...
Microsoft Sharepoint Enterprise Server 2016
Microsoft Project Server 2013
8.8
CVSSv3
CVE-2018-0911
Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique f...
Microsoft Project Server 2013
Microsoft Sharepoint Enterprise Server 2016
8.8
CVSSv3
CVE-2018-0913
Microsoft Project Server 2013 SP1 and Microsoft SharePoint Enterprise Server 2016 allow an elevation of privilege vulnerability to due how specially crafted web requests are sanitized, aka "Microsoft SharePoint Elevation of Privilege Vulnerability". This CVE is unique f...
Microsoft Project Server 2013
Microsoft Sharepoint Enterprise Server 2016
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »