Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
redteam-pentesting.de vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2005-4351
The securelevels implementation in FreeBSD 7.0 and previous versions, OpenBSD up to 3.8, DragonFly up to 1.2, and Linux up to 2.6.15 allows root users to bypass immutable settings for files by mounting another filesystem that masks the immutable files while the system is running.
Freebsd Freebsd 7.0
Dragonfly Dragonfly
Openbsd Openbsd
Freebsd Freebsd
Linux Linux Kernel
8.8
CVSSv3
CVE-2019-11369
An issue exists in Carel pCOWeb prior to B1.2.4. In /config/pw_changeusers.html the device stores cleartext passwords, which may allow sensitive information to be read by someone with access to the device.
Carel Pcoweb Card Firmware
9.8
CVSSv3
CVE-2019-13553
Rittal Chiller SK 3232-Series web interface as built upon Carel pCOWeb firmware A1.5.3 – B1.2.4. The authentication mechanism on affected systems is configured using hard-coded credentials. These credentials could allow malicious users to influence the primary operations of...
Carel Pcoweb Firmware
NA
CVE-2014-8869
Multiple cross-site scripting (XSS) vulnerabilities in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin 1.x prior to 1.1.2 for Woltlab Burning Board 4.0 allow remote malicious users to inject arbitrary web script or HTML via the (1) app_android_id or (2)...
Tapatalk Tapatalk 1.0.1
Tapatalk Tapatalk 1.0.0
Tapatalk Tapatalk 1.1.1
Tapatalk Tapatalk 1.1.0
Tapatalk Tapatalk 1.0.2
NA
CVE-2014-8870
Open redirect vulnerability in mobiquo/smartbanner/welcome.php in the Tapatalk (com.tapatalk.wbb4) plugin prior to 1.1.2 for Woltlab Burning Board 4.0 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the board_url pa...
Tapatalk Tapatalk 1.0.0
Tapatalk Tapatalk 1.1.1
Tapatalk Tapatalk 1.1.0
Tapatalk Tapatalk 1.0.2
Tapatalk Tapatalk 1.0.1
7.5
CVSSv3
CVE-2014-8871
Directory traversal vulnerability in hybris Commerce software suite 5.0.3.3 and previous versions, 5.0.0.3 and previous versions, 5.0.4.4 and previous versions, 5.1.0.1 and previous versions, 5.1.1.2 and previous versions, 5.2.0.3 and previous versions, and 5.3.0.1 and previous v...
Sap Hybris
7.8
CVSSv3
CVE-2014-8872
Improper Verification of Cryptographic Signature in AVM FRITZ!Box 6810 LTE after firmware 5.22, FRITZ!Box 6840 LTE after firmware 5.23, and other models with firmware 5.50.
Avm Fritz\\!box 6810 Lte Firmware -
Avm Fritz\\!box 6840 Lte Firmware -
NA
CVE-2014-8874
The ke_questionnaire extension 2.5.2 and previous versions for TYPO3 uses predictable names for the questionnaire answer forms, which makes it easier for remote malicious users to obtain sensitive information via a direct request.
Kennziffer Ke Questionnaire
NA
CVE-2014-6140
IBM Tivoli Endpoint Manager Mobile Device Management (MDM) prior to 9.0.60100 uses the same secret HMAC token across different customers' installations, which allows remote malicious users to execute arbitrary code via crafted marshalled Ruby objects in cookies to (1) Enroll...
Ibm Tivoli Endpoint Manager Mobile Device Management
8.8
CVSSv3
CVE-2023-32749
Pydio Cells allows users by default to create so-called external users in order to share files with them. By modifying the HTTP request sent when creating such an external user, it is possible to assign the new user arbitrary roles. By assigning all roles to a newly created user,...
Pydio Cells
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »