Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jakub palaczynski vulnerabilities and exploits
(subscribe to this query)
9.6
CVSSv3
CVE-2018-18864
Loadbalancer.org Enterprise VA MAX prior to 8.3.3 has XSS because Apache HTTP Server logs are displayed.
Loadbalancer Enterprise Va Max
9.8
CVSSv3
CVE-2015-5952
Directory traversal vulnerability in Thomson Reuters for FATCA prior to 5.2 allows remote malicious users to execute arbitrary files via the item parameter.
Thomsonreuters Fatca
6.1
CVSSv3
CVE-2017-14525
Multiple open redirect vulnerabilities in OpenText Documentum Webtop 6.8.0160.0073 allow remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a (1) URL in the startat parameter to xda/help/en/default.htm or (2) /%09/ (slash encoded hori...
Opentext Documentum Administrator 7.2.0180.0055
Opentext Documentum Webtop 6.8.0160.0073
7.2
CVSSv3
CVE-2017-16788
Directory traversal vulnerability in the "Upload Groupkey" functionality in the Web Configuration Utility in Meinberg LANTIME devices with firmware prior to 6.24.004 allows remote authenticated users with Admin-User access to write to arbitrary files and consequently ga...
Meinbergglobal Lantime Firmware
7.7
CVSSv3
CVE-2016-3473
Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote authenticated users to affect confidentiality via unknown vectors.
Oracle Business Intelligence Publisher 11.1.1.9.0
Oracle Business Intelligence Publisher 11.1.1.7.0
Oracle Business Intelligence Publisher 12.2.1.0.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-15691
Insecure deserialization of a specially crafted serialized object, in CA Release Automation 6.5 and previous versions, allows malicious users to potentially execute arbitrary code.
Broadcom Release Automation
1 EDB exploit
9.8
CVSSv3
CVE-2017-6315
Astaro Security Gateway (aka ASG) 7 allows remote malicious users to execute arbitrary code via a crafted request to index.plx.
Sophos Astaro Security Gateway Firmware 7.500
Sophos Astaro Security Gateway Firmware 7.506
1 EDB exploit
8.8
CVSSv3
CVE-2017-14527
Multiple XML external entity (XXE) vulnerabilities in the OpenText Documentum Webtop 6.8.0160.0073 allow remote authenticated users to list the contents of arbitrary directories, read arbitrary files, cause a denial of service, or, on Windows, obtain Documentum user hashes via a ...
Opentext Documentum Administrator 7.2.0180.0055
Opentext Documentum Webtop 6.8.0160.0073
8.1
CVSSv3
CVE-2019-3759
The RSA Identity Governance and Lifecycle software and RSA Via Lifecycle and Governance products before 7.1.0 P08 contain a code injection vulnerability. A remote authenticated malicious user could potentially exploit this vulnerability to run custom Groovy scripts to gain limite...
Dell Rsa Via Lifecycle And Governance 7.0.0
Dell Rsa Identity Governance And Lifecycle 7.0.1
Dell Rsa Identity Governance And Lifecycle 7.0.2
Dell Rsa Identity Governance And Lifecycle 7.1.0
Dell Rsa Identity Governance And Lifecycle 7.1.1
8.8
CVSSv3
CVE-2017-14526
Multiple XML external entity (XXE) vulnerabilities in the OpenText Documentum Administrator 7.2.0180.0055 allow remote authenticated users to list the contents of arbitrary directories, read arbitrary files, cause a denial of service, or, on Windows, obtain Documentum user hashes...
Opentext Documentum Administrator 7.2.0180.0055
Opentext Documentum Webtop 6.8.0160.0073
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2