Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
an vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2009-3367
Multiple cross-site scripting (XSS) vulnerabilities in An image gallery 1.0 allow remote malicious users to inject arbitrary web script or HTML via the path parameter to (1) index.php and (2) main.php, and the (3) show parameter to main.php. NOTE: the provenance of this informati...
Plohni An Image Gallery 1.0
1 EDB exploit
NA
CVE-2024-22113
Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and previous versions allows a remote unauthenticated malicious user to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL.
Anglers-net Cgi An-anlyzer
4.3
CVSSv2
CVE-2019-5989
DOM-based cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the Analysis Object Page.
Anglers-net Cgi An-anlyzer
4.3
CVSSv2
CVE-2019-5988
Stored cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the Management Page.
Anglers-net Cgi An-anlyzer
NA
CVE-2023-40752
There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0.
Phpjabbers Make An Offer Widget 1.0
NA
CVE-2023-40767
User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an malicious user to determine if the user is valid or not, enabling a brute force attack with valid users.
Phpjabbers Make An Offer Widget 1.0
7.5
CVSSv2
CVE-2007-0591
PHP remote file inclusion vulnerability in configure.php in Vu Le An Virtual Path (VirtualPath) 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Vu Le An Virtual Path 1.0
1 EDB exploit
10
CVSSv2
CVE-2004-0650
UploadServlet in Cisco Collaboration Server (CCS) running ServletExec prior to 3.0E allows remote malicious users to upload and execute arbitrary files via a direct call to the UploadServlet URL.
Newatlanta Servletexec 3.0
Newatlanta Servletexec 2.2
7.2
CVSSv2
CVE-2019-6026
Privilege escalation vulnerability in Multiple MOTEX products (LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ve...
Motex Lanscope An
Motex Lanscope Cat Client Program
Motex Lanscope Cat Detection Agent
Motex Lanscope Cat Server Monitoring Agent
5.7
CVSSv2
CVE-2019-1700
A vulnerability in field-programmable gate array (FPGA) ingress buffer management for the Cisco Firepower 9000 Series with the Cisco Firepower 2-port 100G double-width network module (PID: FPR9K-DNM-2X100G) could allow an unauthenticated, adjacent malicious user to cause a denial...
Cisco Firepower 9000 Firmware 2.2\\(200.8\\)
1 Article
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-40673
CVE-2024-36674
CVE-2024-27348
unspecified
CVE-2024-24919
CVE-2024-4870
malicious code
CVE-2024-2019
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »