Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
session vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2022-21383
Vulnerability in the Oracle Enterprise Session Border Controller product of Oracle Communications (component: Log). Supported versions that are affected are 8.4 and 9.0. Easily exploitable vulnerability allows low privileged attacker with network access via HTTP to compromise Ora...
Oracle Enterprise Session Border Controller 8.4
Oracle Enterprise Session Border Controller 9.0
4.9
CVSSv3
CVE-2021-2416
Vulnerability in the Oracle Communications Session Border Controller product of Oracle Communications (component: Routing). Supported versions that are affected are 8.4 and 9.0. Easily exploitable vulnerability allows high privileged attacker with network access via HTTP to compr...
Oracle Communications Session Border Controller 8.4
Oracle Communications Session Border Controller 9.0
6.1
CVSSv3
CVE-2019-17573
By default, Apache CXF creates a /services page containing a listing of the available endpoint names and addresses. This webpage is vulnerable to a reflected Cross-Site Scripting (XSS) attack, which allows a malicious actor to inject javascript into the web page. Please note that...
Apache Cxf
Oracle Flexcube Private Banking 12.1.0
Oracle Flexcube Private Banking 12.0.0
Oracle Retail Order Broker 15.0
Oracle Communications Element Manager 8.2.0
Oracle Communications Element Manager 8.2.1
Oracle Communications Element Manager 8.1.1
Oracle Communications Session Report Manager 8.1.1
Oracle Communications Session Report Manager 8.2.0
Oracle Communications Session Report Manager 8.2.1
Oracle Communications Session Route Manager 8.1.1
Oracle Communications Session Route Manager 8.2.0
Oracle Communications Session Route Manager 8.2.1
Oracle Commerce Guided Search 11.3.2
6.1
CVSSv3
CVE-2020-1941
In Apache ActiveMQ 5.0.0 to 5.15.11, the webconsole admin GUI is open to XSS, in the view that lists the contents of a queue.
Apache Activemq
Oracle Flexcube Private Banking 12.1.0
Oracle Flexcube Private Banking 12.0.0
Oracle Enterprise Repository 11.1.1.7.0
Oracle Communications Element Manager 8.2.0
Oracle Communications Element Manager 8.2.1
Oracle Communications Element Manager 8.1.1
Oracle Communications Diameter Signaling Router
Oracle Communications Session Report Manager 8.1.1
Oracle Communications Session Report Manager 8.2.0
Oracle Communications Session Report Manager 8.2.1
Oracle Communications Session Route Manager 8.1.1
Oracle Communications Session Route Manager 8.2.0
Oracle Communications Session Route Manager 8.2.1
NA
CVE-2013-4779
Cross-site scripting (XSS) vulnerability in core/handleTw.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) prior to 2 R0.32.0, and 7 prior to 7 R1.7.0, allows remote malicious users to inject arbitrary web script or HTML via u...
Siemens Openscape Session Border Controller 1r4.17.0
Siemens Enterprise Openscape Branch -
Siemens Openscape Session Border Controller 7r.0
NA
CVE-2013-4778
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) prior to 2 R0.32.0, and 7 prior to 7 R1.7.0, allows remote malicious users to obtain sensitive server and statistics information via unspecified vectors.
Siemens Openscape Session Border Controller 1r4.17.0
Siemens Enterprise Openscape Branch -
Siemens Openscape Session Border Controller 7r.0
NA
CVE-2013-4780
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) prior to 2 R0.32.0, and 7 prior to 7 R1.7.0, allows remote malicious users to read arbitrary files via unspecified vectors.
Siemens Openscape Session Border Controller 1r4.17.0
Siemens Enterprise Openscape Branch -
Siemens Openscape Session Border Controller 7r.0
NA
CVE-2013-4781
core/getLog.php on the Siemens Enterprise OpenScape Branch appliance and OpenScape Session Border Controller (SBC) prior to 2 R0.32.0, and 7 prior to 7 R1.7.0, allows remote malicious users to execute arbitrary commands via unspecified vectors.
Siemens Openscape Session Border Controller 1r4.17.0
Siemens Enterprise Openscape Branch -
Siemens Openscape Session Border Controller 7r.0
NA
CVE-2015-8566
The Session package 1.x prior to 1.3.1 for Joomla! Framework allows remote malicious users to execute arbitrary code via unspecified session values.
Joomla Session 1.3.0
1 EDB exploit
4.6
CVSSv3
CVE-2022-1955
Session 1.13.0 allows an attacker with physical access to the victim's device to bypass the application's password/pin lock to access user data. This is possible due to lack of adequate security controls to prevent dynamic code manipulation.
Opft Session 1.13.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »