Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2018-0310
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to obtain sensitive information from memory or cause a denial of service (DoS) condition on the affected product. The vulne...
Cisco Nx-os 7.0\\(0\\)hsk\\(0.357\\)
Cisco Nx-os 8.1\\(0.2\\)s0
Cisco Nx-os 8.8\\(0.1\\)
Cisco Nx-os 8.0\\(1\\)
Cisco Nx-os 8.8\\(3.5\\)s0
Cisco Nx-os 7.0\\(3\\)i4\\(7\\)
Cisco Nx-os 7.0\\(3\\)i7\\(1\\)
Cisco Nx-os 3.1\\(3a\\)a
Cisco Nx-os 9.9\\(0.902\\)
Cisco Firepower Extensible Operating System
10
CVSSv2
CVE-2018-0301
A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an unauthenticated, remote malicious user to craft a packet to the management interface on an affected system, causing a buffer overflow. The vulnerability is due to incorrect input validation in the authen...
Cisco Nx-os
Cisco Nx-os 8.2
Cisco Nx-os 8.1
Cisco Nx-os 7.0\\(3\\)i7
Cisco Nx-os 6.0
Cisco Nx-os 7.0
Cisco Nx-os 7.1
Cisco Nx-os 7.2
Cisco Nx-os 6.2
Cisco Nx-os 5.2
10
CVSSv2
CVE-2018-0304
A vulnerability in the Cisco Fabric Services component of Cisco FXOS Software and Cisco NX-OS Software could allow an unauthenticated, remote malicious user to read sensitive memory content, create a denial of service (DoS) condition, or execute arbitrary code as root. The vulner...
Cisco Nexus 7000 Firmware 7.3\\(2\\)d1\\(0.49\\)
Cisco Nexus 7000 Firmware 8.1\\(0.112\\)s0
Cisco Nexus 7000 Firmware 8.0\\(1\\)
Cisco Nexus 5000 Firmware 7.3\\(0\\)d1\\(0.98\\)
Cisco Nexus 5000 Firmware 8.1\\(0.2\\)s0
Cisco Nexus 5000 Firmware 7.0\\(0\\)hsk\\(0.357\\)
Cisco Firepower 9000 Firmware R231
Cisco Firepower 9000 Firmware R211
Cisco Nexus 9000 Firmware 8.1\\(0\\)bd\\(0.20\\)
Cisco Nexus 9000 Firmware 8.1\\(1\\)s4
Cisco Unified Computing System Firmware 3.1\\(3a\\)a
Cisco Unified Computing System Firmware 7.0\\(0\\)hsk\\(0.357\\)
10
CVSSv2
CVE-2018-5781
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and previous versions, and Mitel ST 14.2, release GA28 and previous versions, could allow an unauthenticated malicious user to inject PHP code using specially crafted requests to the vendre...
Mitel Connect Onsite
Mitel St14.2
10
CVSSv2
CVE-2018-5782
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and previous versions, and Mitel ST 14.2, release GA28 and previous versions, could allow an unauthenticated malicious user to inject PHP code using specially crafted requests to the vsetho...
Mitel St14.2
Mitel Connect Onsite
1 Github repository
10
CVSSv2
CVE-2018-5780
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and previous versions, and Mitel ST 14.2, release GA28 and previous versions, could allow an unauthenticated malicious user to inject PHP code using specially crafted requests to the vnewme...
Mitel St14.2
Mitel Connect Onsite
10
CVSSv2
CVE-2018-5779
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and previous versions, and Mitel ST 14.2, release GA28 and previous versions, could allow an unauthenticated malicious user to copy a malicious script into a newly generated PHP file and th...
Mitel St14.2
Mitel Connect Onsite
10
CVSSv2
CVE-2018-5749
install.php in Minecraft Servers List Lite before commit c1cd164 and Premium Minecraft Servers List prior to 2.0.4 does not sanitize input before saving database connection information in connect.php, which might allow remote malicious users to execute arbitrary PHP code via the ...
Premium Minecraft Servers List Project Premium Minecraft Servers List
Minecraft Servers List Lite Project Minecraft Servers List Lite
10
CVSSv2
CVE-2017-17560
An issue exists on Western Digital MyCloud PR4100 2.30.172 devices. The web administration component, /web/jquery/uploader/multi_uploadify.php, provides multipart upload functionality that is accessible without authentication and can be used to place a file anywhere on the device...
Westerndigital My Cloud Pr4100 Firmware 2.30.172
1 EDB exploit
10
CVSSv2
CVE-2017-14429
The DHCP client on D-Link DIR-850L REV. A (with firmware through FW114WWb07_h2ab_beta1) and REV. B (with firmware through FW208WWb02) devices allows unauthenticated remote code execution as root because /etc/services/INET/inet_ipv4.php mishandles shell metacharacters, affecting g...
Dlink Dir-850l Firmware
Dlink Dir-850l Firmware Fw114wwb07 H2ab
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »