Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
adrian pastor vulnerabilities and exploits
(subscribe to this query)
505
VMScore
CVE-2007-6268
Directory traversal vulnerability in pages/default.aspx in Absolute News Manager.NET 5.1 allows remote malicious users to read arbitrary files via a .. (dot dot) in the template parameter.
Xigla Absolute News Manager.net 5.1
1 EDB exploit
435
VMScore
CVE-2007-5105
Cross-site scripting (XSS) vulnerability in wp-register.php in WordPress 2.0 and 2.0.1 allows remote malicious users to inject arbitrary web script or HTML via the user_email parameter.
Wordpress Wordpress 2.0
Wordpress Wordpress 2.0.1
1 EDB exploit
435
VMScore
CVE-2007-5796
Cross-site scripting (XSS) vulnerability in the management console in Blue Coat ProxySG prior to 4.2.6.1, and 5.x prior to 5.2.2.5, allows remote malicious users to inject arbitrary web script or HTML by modifying the URL that is used for loading Certificate Revocation Lists.
Symantec Proxysg Firmware
1 EDB exploit
435
VMScore
CVE-2008-3821
Multiple cross-site scripting (XSS) vulnerabilities in the HTTP server in Cisco IOS 11.0 up to and including 12.4 allow remote malicious users to inject arbitrary web script or HTML via (1) the query string to the ping program or (2) unspecified other aspects of the URI.
Cisco Ios 12.0sc
Cisco Ios 12.0sl
Cisco Ios 12.0w
Cisco Ios 12.0wc
Cisco Ios 12.0xh
Cisco Ios 12.0xi
Cisco Ios 12.0xs
Cisco Ios 12.0xt
Cisco Ios 12.1da
Cisco Ios 12.1db
Cisco Ios 12.1ex
Cisco Ios 12.1ey
Cisco Ios 12.1xd
Cisco Ios 12.1xe
Cisco Ios 12.1xm
Cisco Ios 12.1xp
Cisco Ios 12.1xw
Cisco Ios 12.1xx
Cisco Ios 12.1yf
Cisco Ios 12.1yh
Cisco Ios 12.2bx
Cisco Ios 12.2by
1 EDB exploit
435
VMScore
CVE-2008-5183
cupsd in CUPS 1.3.9 and previous versions allows local users, and possibly remote attackers, to cause a denial of service (daemon crash) by adding a large number of RSS Subscriptions, which triggers a NULL pointer dereference. NOTE: this issue can be triggered remotely by leverag...
Apple Cups
Apple Mac Os X
Apple Mac Os X Server
Opensuse Opensuse 11.0
Debian Debian Linux 5.0
Debian Debian Linux 6.0
1 EDB exploit
505
VMScore
CVE-2006-3561
BT Voyager 2091 Wireless firmware 2.21.05.08m_A2pB018c1.d16d and previous versions, and 3.01m and previous versions, allow remote malicious users to bypass the authentication process and gain sensitive information, such as configuration information via (1) /btvoyager_getconfig.sh...
Bt Voyager 2091 Wireless Adsl Router
1 EDB exploit
505
VMScore
CVE-2005-0506
The Avaya IP Office Phone Manager, and other products such as the IP Softphone, stores sensitive data in cleartext in a registry key, which allows local and possibly remote users to steal usernames and passwords and impersonate other users via keys such as Avaya\IP400\Generic.
Avaya Ip Office Phone Manager
Avaya Ip Soft Phone
1 EDB exploit
905
VMScore
CVE-2007-0528
The admin web console implemented by the Centrality Communications (aka Aredfox) PA168 chipset and firmware 1.54 and previous versions, as provided by various IP phones, does not require passwords or authentication tokens when using HTTP, which allows remote malicious users to co...
Centrality Communications Pa168 Chipset
1 EDB exploit
270
VMScore
CVE-2007-6704
Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass 4100 SSL VPN 5.4.1 up to and including 5.5.2 and 6.0 up to and including 6.0.1, when pre-logon sequences are enabled, allow remote malicious users to inject arbitrary web script or HTML via the query string to (1)...
F5 Firepass 4100 5.4.5
F5 Firepass 4100 5.4.6
F5 Firepass 4100 5.4.7
F5 Firepass 4100 6.0.1
F5 Firepass 4100 5.4.3
F5 Firepass 4100 5.4.4
F5 Firepass 4100 5.5.2
F5 Firepass 4100 6.0
F5 Firepass 4100 5.4.1
F5 Firepass 4100 5.4.2
F5 Firepass 4100 5.5.0
F5 Firepass 4100 5.5.1
F5 Firepass 4100 5.4.8
F5 Firepass 4100 5.4.9
2 EDB exploits
445
VMScore
CVE-2008-0239
Multiple cross-site scripting (XSS) vulnerabilities in Sun Java System Identity Manager 6.0 SP1 through SP3, 7.0, and 7.1 allow remote malicious users to inject arbitrary HTML or web script via the (1) cntry or lang parameters to /idm/login.jsp, (2) resultsForm parameter to /idm/...
Sun Java System Identity Manager 6.0
Sun Java System Identity Manager 7.0
Sun Java System Identity Manager 7.1
3 EDB exploits
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
NEXT »