Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unauthorized vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-2429
ManageEngine PasswordManager Pro (PMP) allows remote malicious users to obtain administrative access to a database by injecting a certain command line for the mysql program, as demonstrated by the "-port 2345" and "-u root" arguments. NOTE: the provenance of t...
Manageengine Passwordmanager Pro
1 EDB exploit
7.1
CVSSv3
CVE-2018-0092
A vulnerability in the network-operator user role implementation for Cisco NX-OS System Software could allow an authenticated, local malicious user to improperly delete valid user accounts. The network-operator role should not be able to delete other configured users on the devic...
Cisco Nx-os 7.0\\(3\\)i6\\(1\\)
Cisco Nx-os 7.0\\(3\\)i7\\(1\\)
Cisco Nx-os 7.0\\(3\\)i5\\(2\\)
NA
CVE-2006-2945
Unspecified vulnerability in the user profile change functionality in DokuWiki, when Access Control Lists are enabled, allows remote authenticated users to read unauthorized files via unknown attack vectors.
Andreas Gohr Dokuwiki Release 2004-08-08
Andreas Gohr Dokuwiki Release 2004-08-15a
Andreas Gohr Dokuwiki Release 2004-11-02
Andreas Gohr Dokuwiki Release 2004-11-10
Andreas Gohr Dokuwiki Release 2005-07-13
Andreas Gohr Dokuwiki Release 2005-09-19
Andreas Gohr Dokuwiki Release 2004-07-07
Andreas Gohr Dokuwiki Release 2004-07-12
Andreas Gohr Dokuwiki Release 2004-09-25
Andreas Gohr Dokuwiki Release 2004-09-30
Andreas Gohr Dokuwiki Release 2005-01-16a
Andreas Gohr Dokuwiki Release 2005-02-06
Andreas Gohr Dokuwiki Release 2005-02-18
Andreas Gohr Dokuwiki
Andreas Gohr Dokuwiki Release 2004-07-04
Andreas Gohr Dokuwiki Release 2004-08-22
Andreas Gohr Dokuwiki Release 2004-09-12
Andreas Gohr Dokuwiki Release 2005-01-14
Andreas Gohr Dokuwiki Release 2005-01-15
Andreas Gohr Dokuwiki Release 2005-09-22
Andreas Gohr Dokuwiki Release 2006-03-05
Andreas Gohr Dokuwiki Release 2004-07-21
NA
CVE-2003-1176
post_message_form.asp in Web Wiz Forums 6.34 up to and including 7.5, when quote mode is used, allows remote malicious users to read or write to private forums by modifying the FID (forum ID) parameter.
Bdc Enterprises Web Wiz Forums 6.34
Bdc Enterprises Web Wiz Forums 7.01
Bdc Enterprises Web Wiz Forums 7.5
1 EDB exploit
6.7
CVSSv3
CVE-2018-0294
A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local malicious user to configure an unauthorized administrator account for an affected device. The vulnerability exists because the affected software does not...
Cisco Nx-os 7.3\\(2\\)n1\\(0.354\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.10\\)
Cisco Nx-os 8.8\\(3.5\\)s0
Cisco Nx-os 7.0\\(3\\)i2\\(4a\\)
Cisco Firepower Extensible Operating System
Cisco Fxos
Cisco Nx-os 4.1\\(2\\)e1\\(1a\\)
9.8
CVSSv3
CVE-2020-7136
A security vulnerability in HPE Smart Update Manager (SUM) prior to version 8.5.6 could allow remote unauthorized access. Hewlett Packard Enterprise has provided a software update to resolve this vulnerability in HPE Smart Update Manager (SUM) before 8.5.6. Please visit the HPE S...
Hpe Smart Update Manager
8.8
CVSSv3
CVE-2017-12262
A vulnerability within the firewall configuration of the Cisco Application Policy Infrastructure Controller Enterprise Module (APIC-EM) could allow an unauthenticated, adjacent malicious user to gain privileged access to services only available on the internal network of the devi...
Cisco Application Policy Infrastructure Controller Enterprise Module
6.7
CVSSv3
CVE-2023-20015
A vulnerability in the CLI of Cisco Firepower 4100 Series, Cisco Firepower 9300 Security Appliances, and Cisco UCS 6200, 6300, 6400, and 6500 Series Fabric Interconnects could allow an authenticated, local malicious user to inject unauthorized commands. This vulnerability is due ...
Cisco Ucs Central Software
Cisco Ucs 6536 Firmware -
Cisco Ucs 64108 Firmware -
Cisco Ucs 6454 Firmware -
Cisco Ucs 6200 Firmware -
Cisco Ucs 6248up Firmware -
Cisco Ucs 6296up Firmware -
Cisco Ucs 6300 Firmware -
Cisco Ucs 6324 Firmware -
Cisco Ucs 6332 Firmware -
Cisco Ucs 6332-16up Firmware -
Cisco Firepower Extensible Operating System -
NA
CVE-2015-5602
sudoedit in Sudo prior to 1.8.15 allows local users to gain privileges via a symlink attack on a file whose full path is defined using multiple wildcards in /etc/sudoers, as demonstrated by "/home/*/*/file.txt."
Sudo Project Sudo
1 EDB exploit
2 Github repositories
8.8
CVSSv3
CVE-2019-12648
A vulnerability in the IOx application environment for Cisco IOS Software could allow an authenticated, remote malicious user to gain unauthorized access to the Guest Operating System (Guest OS) running on an affected device. The vulnerability is due to incorrect role-based acces...
Cisco Ios 15.7\\(3\\)m3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »