Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-49573
A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an malicious user to execute persistent XSS through /add_command_action in action_value. This vulnerability could allow an malicious user to store malicious JavaScript payloads ...
NA
CVE-2024-5318
An issue has been discovered in GitLab CE/EE affecting all versions starting from 11.11 before 16.10.6, starting from 16.11 before 16.11.3, and starting from 17.0 before 17.0.1. A Guest user can view dependency lists of private projects through job artifacts.
NA
CVE-2023-49574
A vulnerability has been discovered in VX Search Enterprise affecting version 10.2.14 that could allow an malicious user to execute persistent XSS through /add_job in job_name. This vulnerability could allow an malicious user to store malicious JavaScript payloads on the system t...
NA
CVE-2023-47710
IBM Security Guardium 11.4, 11.5, and 12.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session. IBM...
NA
CVE-2024-5148
gnome-remote-desktop: D-Bus system service in GNOME release 46 local information leaks (CVE-2024-5148)
NA
CVE-2024-5312
PHP Server Monitor, version 3.2.0, is vulnerable to an XSS via the /phpservermon-3.2.0/vendor/phpmailer/phpmailer/test_script/index.php page in all visible parameters. An attacker could create a specially crafted URL, send it to a victim and retrieve their session details.
NA
CVE-2024-4455
The YITH WooCommerce Ajax Search plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the ‘item’ parameter in versions up to, and including, 2.4.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated m...
NA
CVE-2023-46442
CVE-2023-46442_POC POC for CVE-2023-46442 Denial of Service vulnerability found within Soot
1 Github repository
NA
CVE-2024-5314
Vulnerabilities in Dolibarr ERP - CRM that affect version 9.0.1 and allow SQL injection. These vulnerabilities could allow a remote malicious user to send a specially crafted SQL query to the system and retrieve all the information stored in the database through the parameters so...
NA
CVE-2024-5315
Vulnerabilities in Dolibarr ERP - CRM that affect version 9.0.1 and allow SQL injection. These vulnerabilities could allow a remote malicious user to send a specially crafted SQL query to the system and retrieve all the information stored in the database through the parameters ...
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »