Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote support vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2018-5926
A potential vulnerability has been identified in HP Remote Graphics Software’s certificate authentication process version 7.5.0 and previous versions.
Hp Remote Graphics Software
NA
CVE-2012-2235
Cross-site scripting (XSS) vulnerability in Support Incident Tracker (SiT!) 3.65 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the id parameter to index.php, which is not properly handled in an error message.
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 10.8.00
Sitracker Support Incident Tracker 9.8.00
Sitracker Support Incident Tracker 14.8.00
Sitracker Support Incident Tracker 21.8.00
Sitracker Support Incident Tracker 3.01
Sitracker Support Incident Tracker 3.03
Sitracker Support Incident Tracker 7.8.00
Sitracker Support Incident Tracker 2.8.00
Sitracker Support Incident Tracker 11.8.00
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.03a
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 16.8.00
Sitracker Support Incident Tracker 3.00
Sitracker Support Incident Tracker 3.02
Sitracker Support Incident Tracker 4.8.00
Sitracker Support Incident Tracker 1.8.00
NA
CVE-2011-5074
Multiple cross-site request forgery (CSRF) vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to hijack the authentication of administrators for requests that change administrator email, add a new administrator, or insert arbitrary s...
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.40
1 EDB exploit
NA
CVE-2011-5071
Multiple SQL injection vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.64 allow remote malicious users to execute arbitrary SQL commands via the (1) exc[] parameter to report_marketing.php, (2) selected[] parameter to tasks.php, (3) sites[] parameter to billable...
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.40
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker
4 EDB exploits
NA
CVE-2010-1596
Support Incident Tracker prior to 3.51, when using LDAP authentication with anonymous binds, allows remote malicious users to bypass authentication via an empty password.
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.40
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.45
NA
CVE-2011-5072
Multiple SQL injection vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to execute arbitrary SQL commands via the (1) start parameter to portal/kb.php; (2) contractid parameter to contract_add_service.php; (3) id parameter to edit_...
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.40
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.21
Sitracker Support Incident Tracker
1 EDB exploit
NA
CVE-2011-5073
Multiple cross-site scripting (XSS) vulnerabilities in Support Incident Tracker (aka SiT!) prior to 3.65 allow remote malicious users to inject arbitrary web script or HTML via the (1) mode parameter to contact_support.php; (2) contractid parameter to contract_add_service.php; (3...
Sitracker Support Incident Tracker 3.36
Sitracker Support Incident Tracker 3.35
Sitracker Support Incident Tracker 3.33
Sitracker Support Incident Tracker 3.32
Sitracker Support Incident Tracker 3.45
Sitracker Support Incident Tracker 3.40
Sitracker Support Incident Tracker
Sitracker Support Incident Tracker 3.62
Sitracker Support Incident Tracker 3.61
Sitracker Support Incident Tracker 3.60
Sitracker Support Incident Tracker 3.6
Sitracker Support Incident Tracker 3.24
Sitracker Support Incident Tracker 3.23
Sitracker Support Incident Tracker 3.22pl1
Sitracker Support Incident Tracker 3.22
Sitracker Support Incident Tracker 3.51
Sitracker Support Incident Tracker 3.31
Sitracker Support Incident Tracker 3.30
Sitracker Support Incident Tracker 3.63
Sitracker Support Incident Tracker 3.50
Sitracker Support Incident Tracker 3.41
Sitracker Support Incident Tracker 3.21
1 EDB exploit
NA
CVE-2011-5187
Cross-site scripting (XSS) vulnerability in the Support Ticketing System module 6.x-1.x prior to 6.x-1.7 for Drupal allows remote authenticated users with the "administer support projects" permission to inject arbitrary web script or HTML via unspecified vectors.
Tag1consulting Support 6.x-1.4
Tag1consulting Support 6.x-1.5
Tag1consulting Support 6.x-1.0
Tag1consulting Support 6.x-1.3
Tag1consulting Support 6.x-1.2
Tag1consulting Support 6.x-1.1
Tag1consulting Support 6.x-1.6
Tag1consulting Support 6.x-1.x
8.8
CVSSv3
CVE-2017-2097
Cross-site request forgery (CSRF) vulnerability in Knowledge versions prior to v1.7.0 allows remote malicious users to hijack the authentication of administrators via unspecified vectors.
Support-project Knowledge
Support-project Knowledge 1.5.0
Support-project Knowledge 1.6.0
NA
CVE-2007-5604
Buffer overflow in the ExtractCab function in the HPISDataManagerLib.Datamgr ActiveX control in HPISDataManager.dll in HP Instant Support prior to 1.0.0.24 allows remote malicious users to execute arbitrary code via a long first argument, a different vulnerability than CVE-2007-5...
Hp Instant Support 1.0.0.22
Hp Instant Support
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »