Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
private internet access vulnerabilities and exploits
(subscribe to this query)
8.5
CVSSv2
CVE-2010-0142
MeetingTime in Cisco Unified MeetingPlace 6 before MR5, and possibly 5, allows remote authenticated users to gain privileges via a modified authentication sequence, aka Bug ID CSCsv66530.
Cisco Unified Meetingplace 6.0
Cisco Unified Meetingplace 5.3
Cisco Unified Meetingplace 5.4
Cisco Unified Meetingplace 5.2
5.4
CVSSv2
CVE-2019-0227
A Server Side Request Forgery (SSRF) vulnerability affected the Apache Axis 1.4 distribution that was last released in 2006. Security and bug commits commits continue in the projects Axis 1.x Subversion repository, legacy users are encouraged to build from source. The successor t...
Apache Axis 1.4
Oracle Agile Product Lifecycle Management Framework 9.3.3
Oracle Flexcube Private Banking 12.1.0
Oracle Primavera Unifier 16.2
Oracle Peoplesoft Enterprise Human Capital Management Human Resources 9.2
Oracle Retail Xstore Point Of Service 7.1
Oracle Enterprise Manager Base Platform 12.1.0.5
Oracle Flexcube Private Banking 12.0.0
Oracle Primavera Unifier 16.1
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Hospitality Guest Access 4.2.0
Oracle Hospitality Guest Access 4.2.1
Oracle Tuxedo 12.1.3
Oracle Internet Directory 12.2.1.3.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Communications Order And Service Management 7.3.0.0.0
Oracle Flexcube Core Banking 11.7.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Application Testing Suite 13.2.0.1
Oracle Application Testing Suite 13.3.0.1
Oracle Secure Global Desktop 5.4
Oracle Retail Order Broker 15.0
1 EDB exploit
2 Github repositories
4.3
CVSSv2
CVE-2018-8032
Apache Axis 1.x up to and including 1.4 is vulnerable to a cross-site scripting (XSS) attack in the default servlet/services.
Apache Axis
Oracle Agile Product Lifecycle Management Framework 9.3.3
Oracle Flexcube Private Banking 12.1.0
Oracle Primavera Unifier 16.2
Oracle Peoplesoft Enterprise Human Capital Management Human Resources 9.2
Oracle Retail Xstore Point Of Service 7.1
Oracle Enterprise Manager Base Platform 12.1.0.5
Oracle Flexcube Private Banking 12.0.0
Oracle Primavera Unifier 16.1
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Hospitality Guest Access 4.2.0
Oracle Hospitality Guest Access 4.2.1
Oracle Tuxedo 12.1.3
Oracle Internet Directory 12.2.1.3.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Communications Order And Service Management 7.3.0.0.0
Oracle Flexcube Core Banking 11.7.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Application Testing Suite 13.2.0.1
Oracle Application Testing Suite 13.3.0.1
Oracle Secure Global Desktop 5.4
Oracle Retail Order Broker 15.0
9
CVSSv2
CVE-2010-0139
Cisco Unified MeetingPlace 7 prior to 7.0(2.3) hotfix 5F, 6 prior to 6.0.639.2, and possibly 5 does not properly validate SQL commands, which allows remote malicious users to create, modify, or delete data in a database via unspecified vectors, aka Bug ID CSCtc39691.
Cisco Unified Meetingplace 5.0
Cisco Unified Meetingplace 7.0
Cisco Unified Meetingplace 7.0.2
Cisco Unified Meetingplace 5
Cisco Unified Meetingplace 6.0.170.0
Cisco Unified Meetingplace 6.0.244
Cisco Unified Meetingplace 6.0
Cisco Unified Meetingplace 7.0.1
10
CVSSv2
CVE-2010-0140
Multiple unspecified vulnerabilities in the web server in Cisco Unified MeetingPlace 7 prior to 7.0(2.3) hotfix 5F, 6 prior to 6.0.639.3, and possibly 5 allow remote malicious users to create (1) user or (2) administrator accounts via a crafted URL in a request to the internal in...
Cisco Unified Meetingplace 5.2
Cisco Unified Meetingplace 5.4
Cisco Unified Meetingplace 7.0
Cisco Unified Meetingplace 7.0.1
Cisco Unified Meetingplace 6.0
Cisco Unified Meetingplace 5.3
Cisco Unified Meetingplace 7.0.2
10
CVSSv2
CVE-2013-0137
The default configuration of the Digital Alert Systems DASDEC EAS device prior to 2.0-2 and the Monroe Electronics R189 One-Net EAS device prior to 2.0-2 contains a known SSH private key, which makes it easier for remote malicious users to obtain root access, and spoof alerts, vi...
Digital Alert Systems Dasdec Eas
Monroe Electronics R189 One-net Eas 2.0-0
Monroe Electronics R189 One-net Eas
Digital Alert Systems Dasdec Eas 2.0-0
7.5
CVSSv2
CVE-2005-1057
Cisco IOS 12.2T, 12.3 and 12.3T, when using Easy VPN Server XAUTH version 6 authentication, allows remote malicious users to bypass authentication via a "malformed packet."
Cisco Ios 12.2t
Cisco Ios 12.3
Cisco Ios 12.3t
7.5
CVSSv2
CVE-2005-1058
Cisco IOS 12.2T, 12.3 and 12.3T, when processing an ISAKMP profile that specifies XAUTH authentication after Phase 1 negotiation, may not process certain attributes in the ISAKMP profile that specifies XAUTH, which allows remote malicious users to bypass XAUTH and move to Phase 2...
Cisco Ios 12.2t
Cisco Ios 12.3
Cisco Ios 12.3t
7.8
CVSSv2
CVE-2013-1144
Memory leak in the IKEv1 implementation in Cisco IOS 15.1 allows remote malicious users to cause a denial of service (memory consumption) via unspecified (1) IPv4 or (2) IPv6 IKE packets, aka Bug ID CSCth81055.
Cisco Ios 15.1
7.2
CVSSv2
CVE-2019-12572
A vulnerability in the London Trust Media Private Internet Access (PIA) VPN Client 1.0.2 (build 02363) for Windows could allow an authenticated, local malicious user to run arbitrary code with elevated privileges. On startup, the PIA Windows service (pia-service.exe) loads the Op...
Londontrustmedia Private Internet Access 1.0.2
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »