Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sf vulnerabilities and exploits
(subscribe to this query)
905
VMScore
CVE-2019-1914
A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an authenticated, remote malicious user to perform a command injection attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker cou...
Cisco Sf-220-24 Firmware
Cisco Sf220-24p Firmware
Cisco Sf220-48 Firmware
Cisco Sf220-48p Firmware
Cisco Sg220-26 Firmware
Cisco Sg220-26p Firmware
Cisco Sg220-28 Firmware
Cisco Sg220-28mp Firmware
Cisco Sg220-50 Firmware
Cisco Sg220-50p Firmware
Cisco Sg220-52 Firmware
1 EDB exploit
440
VMScore
CVE-2007-6597
Multiple cross-site scripting (XSS) vulnerabilities in IPortalX before Build 033 allow remote malicious users to inject arbitrary web script or HTML via the (1) KW and (2) SF parameters to forum/login_user.asp, and (3) the Date parameter to blogs.asp.
Iportalx Iportalx Beta 1
2 EDB exploits
NA
CVE-2022-35291
Due to misconfigured application endpoints, SAP SuccessFactors attachment APIs allow attackers with user privileges to perform activities with admin privileges over the network. These APIs were consumed in the SF Mobile application for Time Off, Time Sheet, EC Workflow, and Benef...
Sap Successfactors Mobile 8.0.5
NA
CVE-2020-36706
The Simple:Press – WordPress Forum Plugin for WordPress is vulnerable to arbitrary file uploads due to missing file type validation in the ~/admin/resources/jscript/ajaxupload/sf-uploader.php file in versions up to, and including, 6.6.0. This makes it possible for malicious...
Simple-press Simple\\ Press
445
VMScore
CVE-2019-15165
sf-pcapng.c in libpcap prior to 1.9.1 does not properly validate the PHB header length before allocating memory.
Tcpdump Libpcap
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Opensuse Leap 15.0
Opensuse Leap 15.1
Oracle Communications Operations Monitor 3.4
Oracle Communications Operations Monitor 4.0
Oracle Communications Operations Monitor 4.2
Oracle Communications Operations Monitor 4.1
Oracle Communications Operations Monitor 4.3
Apple Mac Os X 10.13.6
Apple Mac Os X 10.14.6
Apple Mac Os X 10.15.2
Apple Mac Os X
Apple Tvos 13.3
Apple Watchos 6.1.1
Apple Iphone Os 13.3
Apple Ipados 13.3
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
427
VMScore
CVE-2020-11539
An issue exists on Tata Sonata Smart SF Rush 1.12 devices. It has been identified that the smart band has no pairing (mode 0 Bluetooth LE security level) The data being transmitted over the air is not encrypted. Adding to this, the data being sent to the smart band doesn't h...
Titan Sf Rush Smart Band Firmware 1.12
1 Github repository
890
VMScore
CVE-2021-27198
An issue exists in Visualware MyConnection Server before v11.1a. Unauthenticated Remote Code Execution can occur via Arbitrary File Upload in the web service when using a myspeed/sf?filename= URI. This application is written in Java and is thus cross-platform. The Windows install...
Visualware Myconnection Server
NA
CVE_2022_40684
Official Writeup - Simple CTF 2.0 Created: April 23, 2024 7:50 PM Today I completed an other room on TryHackMe with a simple file-upload vulnerability which I built. I have tried for dancing around this whole CTF machine and getting a lot of walls of challenges in the end it co...
1 Github repository
NA
CVE-2021-47428
In the Linux kernel, the following vulnerability has been resolved: powerpc/64s: fix program check interrupt emergency stack path Emergency stack path was jumping into a 3: label inside the __GEN_COMMON_BODY macro for the normal path after it had finished, rather than jumping ove...
409
VMScore
CVE-2021-3438
A potential buffer overflow in the software drivers for certain HP LaserJet products and Samsung product printers could lead to an escalation of privilege.
Hp Color Laser 150 4zb94a -
Hp Color Laser 150 4zb95a -
Hp Color Laser Mfp 170 4zb96a -
Hp Color Laser Mfp 170 4zb97a -
Hp Color Laser Mfp 170 6hu08a -
Hp Color Laser Mfp 170 6hu09a -
Hp Laser 100 209u7a -
Hp Laser 100 4zb79a -
Hp Laser 100 4zb80a -
Hp Laser 100 4zb81a -
Hp Laser 100 5ue14a -
Hp Laser 408 7uq75a -
Hp Laser Mfp 130 4zb82a -
Hp Laser Mfp 130 4zb83a -
Hp Laser Mfp 130 4zb84a -
Hp Laser Mfp 130 4zb85a -
Hp Laser Mfp 130 4zb86a -
Hp Laser Mfp 130 4zb87a -
Hp Laser Mfp 130 4zb88a -
Hp Laser Mfp 130 4zb89a -
Hp Laser Mfp 130 4zb90a -
Hp Laser Mfp 130 4zb91a -
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »