Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
abuse abuse vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-3258
Incorrect Permission Assignment for Critical Resource vulnerability in HYPR Workforce Access on Windows allows Authentication Abuse.
Hypr Workforce Access
NA
CVE-1999-0512
A mail server is explicitly configured to allow SMTP mail relay, which allows abuse by spammers.
6.1
CVSSv3
CVE-2017-11718
There is URL Redirector Abuse in MetInfo up to and including 5.3.17 via the gourl parameter to member/login.php.
Metinfo Project Metinfo
7.8
CVSSv3
CVE-2020-12254
Avira Antivirus prior to 5.0.2003.1821 on Windows allows privilege escalation or a denial of service via abuse of a symlink.
Avira Antivirus
6.1
CVSSv3
CVE-2017-11586
dayrui FineCms 5.0.9 has URL Redirector Abuse via the url parameter in a sync action, related to controllers/Weixin.php.
Finecms Finecms
6.5
CVSSv3
CVE-2021-37469
In NCH WebDictate v2.13 and previous versions, authenticated users can abuse logprop?file=/.. path traversal to read files on the filesystem.
Nch Webdictate
7.3
CVSSv3
CVE-2020-28186
Email Injection in TerraMaster TOS <= 4.2.06 allows remote unauthenticated malicious users to abuse the forget password functionality and achieve account takeover.
Terra-master Tos
8.8
CVSSv3
CVE-2023-4934
Authorization Bypass Through User-Controlled Key vulnerability in Usta AYBS allows Authentication Abuse, Authentication Bypass.This issue affects AYBS: prior to 1.0.3.
Usta Aybs
9.8
CVSSv3
CVE-2023-3048
Authorization Bypass Through User-Controlled Key vulnerability in TMT Lockcell allows Authentication Abuse, Authentication Bypass.This issue affects Lockcell: prior to 15.
Tmtmakine Lockcell Firmware
8.8
CVSSv3
CVE-2023-37362
Weintek Weincloud v0.13.6 could allow an malicious user to abuse the registration functionality to login with testing credentials to the official website.
Weintek Weincloud 0.13.6
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30051
remote
CVE-2024-27954
CVE-2023-51483
CVE-2023-47782
SSRF
CVE-2024-24715
CVE-2023-52424
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »