Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gui vulnerabilities and exploits
(subscribe to this query)
5.8
CVSSv2
CVE-2021-27612
In specific situations SAP GUI for Windows until and including 7.60 PL9, 7.70 PL0, forwards a user to specific malicious website which could contain malware or might lead to phishing attacks to steal credentials of the victim.
Sap Gui For Windows 7.60
Sap Gui For Windows 7.70
NA
CVE-2023-0420
The Custom Post Type and Taxonomy GUI Manager WordPress plugin up to and including 1.1 does not have CSRF, and is lacking sanitising as well as escaping in some parameters, allowing malicious users to make a logged in admin put Stored Cross-Site Scripting payloads via CSRF
Custom Post Type And Taxonomy Gui Manager Project Custom Post Type And Taxonomy Gui Manager
8.5
CVSSv2
CVE-2020-5804
Marvell QConvergeConsole GUI <= 5.5.0.74 is affected by a path traversal vulnerability. The deleteEventLogFile method of the GWTTestServiceImpl class lacks proper validation of a user-supplied path prior to using it in file deletion operations. An authenticated, remote attacke...
Marvell Qconvergeconslole Gui
9
CVSSv2
CVE-2017-14001
An Improper Neutralization of Special Elements used in an OS Command issue exists in Digium Asterisk GUI 2.1.0 and prior. An OS command injection vulnerability has been identified that may allow the execution of arbitrary code on the system through the inclusion of OS commands in...
Digium Asterisk Gui
9
CVSSv2
CVE-2020-5805
In Marvell QConvergeConsole GUI <= 5.5.0.74, credentials are stored in cleartext in tomcat-users.xml. OS-level users on the QCC host who are not authorized to use QCC may use the plaintext credentials to login to QCC.
Marvell Qconvergeconslole Gui
NA
CVE-2022-41205
SAP GUI allows an authenticated malicious user to execute scripts in the local network. On successful exploitation, the attacker can gain access to registries which can cause a limited impact on confidentiality and high impact on availability of the application.
Sap Gui 7.70
NA
CVE-2023-26922
SQL injection vulnerability found in Varisicte matrix-gui v.2 allows a remote malicious user to execute arbitrary code via the shell_exect parameter to the \www\pages\matrix-gui-2.0 endpoint.
Variscite Matrix-gui 2.0
4.3
CVSSv2
CVE-2018-7652
lib/Zonemaster/GUI/Dancer/Export.pm in Zonemaster Web GUI prior to 1.0.11 has XSS.
Zonemaster Zonemaster Web Gui
NA
CVE-2024-22125
Under certain conditions the Microsoft Edge browser extension (SAP GUI connector for Microsoft Edge) - version 1.0, allows an malicious user to access highly sensitive information which would otherwise be restricted causing high impact on confidentiality.
Sap Gui Connector 1.0
10
CVSSv2
CVE-2010-2028
Buffer overflow in k23productions TFTPUtil GUI (aka TFTPGUI) 1.4.5 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long transport mode.
Mgenti Tftputil Gui 1.4.5
2 EDB exploits
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »