Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
an vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-5990
Access analysis CGI An-Analyzer released in 2019 June 24 and previous versions allow remote malicious users to obtain a login password via HTTP referer.
Anglers-net Cgi An-anlyzer
NA
CVE-2009-3366
Directory traversal vulnerability in navigation.php in An image gallery 1.0 allows remote malicious users to list arbitrary directories via a .. (dot dot) in the path parameter.
Plohni An Image Gallery 1.0
1 EDB exploit
NA
CVE-2009-3367
Multiple cross-site scripting (XSS) vulnerabilities in An image gallery 1.0 allow remote malicious users to inject arbitrary web script or HTML via the path parameter to (1) index.php and (2) main.php, and the (3) show parameter to main.php. NOTE: the provenance of this informati...
Plohni An Image Gallery 1.0
1 EDB exploit
6.1
CVSSv3
CVE-2024-22113
Open redirect vulnerability in Access analysis CGI An-Analyzer released in 2023 December 31 and previous versions allows a remote unauthenticated malicious user to redirect users to arbitrary websites and conduct phishing attacks via a specially crafted URL.
Anglers-net Cgi An-anlyzer
6.1
CVSSv3
CVE-2023-40752
There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0.
Phpjabbers Make An Offer Widget 1.0
9.8
CVSSv3
CVE-2023-40767
User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an malicious user to determine if the user is valid or not, enabling a brute force attack with valid users.
Phpjabbers Make An Offer Widget 1.0
NA
CVE-2007-0591
PHP remote file inclusion vulnerability in configure.php in Vu Le An Virtual Path (VirtualPath) 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Vu Le An Virtual Path 1.0
1 EDB exploit
NA
CVE-2004-0650
UploadServlet in Cisco Collaboration Server (CCS) running ServletExec prior to 3.0E allows remote malicious users to upload and execute arbitrary files via a direct call to the UploadServlet URL.
Newatlanta Servletexec 3.0
Newatlanta Servletexec 2.2
7.8
CVSSv3
CVE-2019-6026
Privilege escalation vulnerability in Multiple MOTEX products (LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ve...
Motex Lanscope An
Motex Lanscope Cat Client Program
Motex Lanscope Cat Detection Agent
Motex Lanscope Cat Server Monitoring Agent
6.1
CVSSv3
CVE-2019-1700
A vulnerability in field-programmable gate array (FPGA) ingress buffer management for the Cisco Firepower 9000 Series with the Cisco Firepower 2-port 100G double-width network module (PID: FPR9K-DNM-2X100G) could allow an unauthenticated, adjacent malicious user to cause a denial...
Cisco Firepower 9000 Firmware 2.2\\(200.8\\)
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »