Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sentinel vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2011-5225
Cross-site scripting (XSS) vulnerability in wordpress_sentinel.php in the Sentinel plugin 1.0.0 for WordPress allows remote malicious users to inject arbitrary web script or HTML via unknown vectors.
Trioniclabs Sentinel 1.0.0
6.8
CVSSv2
CVE-2011-5226
Cross-site request forgery (CSRF) vulnerability in wordpress_sentinel.php in the Sentinel plugin 1.0.0 for WordPress allows remote malicious users to hijack the authentication of an administrator for requests that trigger snapshots.
Trioniclabs Sentinel 1.0.0
2.6
CVSSv2
CVE-2019-8282
Gemalto Admin Control Center, all versions before 7.92, uses cleartext HTTP to communicate with www3.safenet-inc.com to obtain language packs. This allows malicious user to do man-in-the-middle (MITM) attack and replace original language pack by malicious one.
Gemalto Sentinel Ldk
4.3
CVSSv2
CVE-2019-8283
Hasplm cookie in Gemalto Admin Control Center, all versions before 7.92, does not have 'HttpOnly' flag. This allows malicious javascript to steal it.
Gemalto Sentinel Ldk
7.5
CVSSv2
CVE-2011-1913
SQL injection vulnerability in the login form in the web interface in Mercator SENTINEL 2.0 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Mercator Sentinel 2.0
4
CVSSv2
CVE-2011-5028
Directory traversal vulnerability in novelllogmanager/FileDownload in Novell Sentinel Log Manager 1.2.0.1_938 and previous versions, as used in Novell Sentinel prior to 7.0.1.0, allows remote authenticated users to read arbitrary files via a .. (dot dot) in the filename parameter...
Novell Sentinel Log Manager
1 EDB exploit
5
CVSSv2
CVE-2018-6305
Denial of service in Gemalto's Sentinel LDK RTE version prior to 7.65
Gemalto Sentinel Ldk Rte
4.3
CVSSv2
CVE-2018-8900
The License Manager service of HASP SRM, Sentinel HASP and Sentinel LDK products prior to Sentinel LDK RTE 7.80 allows remote malicious users to inject malicious web script in the logs page of Admin Control Center (ACC) for cross-site scripting (XSS) vulnerability.
Gemalto Sentinel Ldk Rte
5
CVSSv2
CVE-2018-15492
A vulnerability in the lservnt.exe component of Sentinel License Manager version 8.5.3.35 (fixed in 8.5.3.2403) causes UDP amplification.
Gemalto Sentinel License Manager
NA
CVE-2022-48227
An issue exists in Acuant AsureID Sentinel prior to 5.2.149. It allows elevation of privileges because it opens Notepad after the installation of AssureID, Identify x64, and Identify x86, aka CORE-7361.
Gbgplc Acuant Asureid Sentinel
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »