Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adrian pastor vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-5796
Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG prior to 4.2.6.1, and 5.x prior to 5.2.2.5, allows remote malicious users to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.
Symantec Proxysg Firmware
1 EDB exploit
NA
CVE-2007-6055
Cross-site scripting (XSS) vulnerability in c/portal/login in Liferay Portal 4.1.0 and 4.1.1 allows remote malicious users to inject arbitrary web script or HTML via the login parameter. NOTE: this issue reportedly exists because of a regression that followed a fix at an unspecif...
Liferay Portal 4.1.1
Liferay Portal 4.1.0
1 EDB exploit
NA
CVE-2007-6268
Directory traversal vulnerability in pages/default.aspx in Absolute News Manager.NET 5.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the template parameter.
Xigla Absolute News Manager.net 5.1
1 EDB exploit
NA
CVE-2008-3821
Multiple cross-site scripting (XSS) vulnerabilities in the HTTP server in Cisco IOS 11.0 up to and including 12.4 allow remote malicious users to inject arbitrary web script or HTML via (1) the query string to the ping program or (2) unspecified other aspects of the URI.
Cisco Ios 12.0sc
Cisco Ios 12.0sl
Cisco Ios 12.0w
Cisco Ios 12.0wc
Cisco Ios 12.0xh
Cisco Ios 12.0xi
Cisco Ios 12.0xs
Cisco Ios 12.0xt
Cisco Ios 12.1da
Cisco Ios 12.1db
Cisco Ios 12.1ex
Cisco Ios 12.1ey
Cisco Ios 12.1xd
Cisco Ios 12.1xe
Cisco Ios 12.1xm
Cisco Ios 12.1xp
Cisco Ios 12.1xw
Cisco Ios 12.1xx
Cisco Ios 12.1yf
Cisco Ios 12.1yh
Cisco Ios 12.2bx
Cisco Ios 12.2by
1 EDB exploit
7.5
CVSSv3
CVE-2008-5183
cupsd in CUPS 1.3.9 and previous versions allows local users, and possibly remote attackers, to cause a denial of service (daemon crash) by adding a large number of RSS Subscriptions, which triggers a NULL pointer dereference. NOTE: this issue can be triggered remotely by leverag...
Apple Cups
Apple Mac Os X
Apple Mac Os X Server
Opensuse Opensuse 11.0
Debian Debian Linux 5.0
Debian Debian Linux 6.0
1 EDB exploit
NA
CVE-2006-3561
BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and previous versions, and 3.01m and previous versions, allow remote malicious users to bypass the authentication process and gain sensitive information, such as configuration information via (1) /btvoyager_getconfig.sh...
Bt Voyager 2091 Wireless Adsl Router
1 EDB exploit
NA
CVE-2007-0528
The admin web console implemented by the Centrality Communications (aka Aredfox) PA168 chipset and firmware 1.54 and previous versions, as provided by various IP phones, does not require passwords or authentication tokens when using HTTP, which allows remote malicious users to co...
Centrality Communications Pa168 Chipset
1 EDB exploit
NA
CVE-2005-0506
The Avaya IP Office Phone Manager, and other products such as the IP Softphone, stores sensitive data in cleartext in a registry key, which allows local and possibly remote users to steal usernames and passwords and impersonate other users via keys such as Avaya\IP400\Generic.
Avaya Ip Office Phone Manager
Avaya Ip Soft Phone
1 EDB exploit
NA
CVE-2007-6704
Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 up to and including 5.5.2 and 6.0 up to and including 6.0.1, when pre-logon sequences are enabled, allow remote malicious users to inject arbitrary web script or HTML via the query string to (1)...
F5 Firepass 4100 5.4.5
F5 Firepass 4100 5.4.6
F5 Firepass 4100 5.4.7
F5 Firepass 4100 6.0.1
F5 Firepass 4100 5.4.3
F5 Firepass 4100 5.4.4
F5 Firepass 4100 5.5.2
F5 Firepass 4100 6.0
F5 Firepass 4100 5.4.1
F5 Firepass 4100 5.4.2
F5 Firepass 4100 5.5.0
F5 Firepass 4100 5.5.1
F5 Firepass 4100 5.4.8
F5 Firepass 4100 5.4.9
2 EDB exploits
NA
CVE-2008-0239
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager 6.0 SP1 through SP3, 7.0, and 7.1 allow remote malicious users to inject arbitrary HTML or web script via the (1) cntry or lang parameters to /idm/login.jsp, (2) resultsForm parameter to /idm/...
Sun Java System Identity Manager 6.0
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
3 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »