Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
article system vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2019-16375
An issue exists in Open Ticket Request System (OTRS) 7.0.x up to and including 7.0.11, and Community Edition 5.0.x up to and including 5.0.37 and 6.0.x up to and including 6.0.22. An attacker who is logged in as an agent or customer user with appropriate permissions can create a ...
Otrs Otrs
6.5
CVSSv3
CVE-2019-12746
An issue exists in Open Ticket Request System (OTRS) Community Edition 5.0.x up to and including 5.0.36 and 6.0.x up to and including 6.0.19. A user logged into OTRS as an agent might unknowingly disclose their session ID by sharing the link of an embedded ticket article with thi...
Otrs Otrs
Debian Debian Linux 8.0
6.8
CVSSv3
CVE-2019-3717
Select Dell Client Commercial and Consumer platforms contain an Improper Access Vulnerability. An unauthenticated attacker with physical access to the system could potentially bypass intended Secure Boot restrictions to run unsigned and untrusted code on expansion cards installed...
Dell Chengming 3967 Firmware
Dell Chengming 3977 Firmware
Dell Chengming 3980 Firmware
Dell G3 3579 Firmware
Dell G3 3779 Firmware
Dell G5 5587 Firmware
Dell G5 5590 Firmware
Dell G7 7588 Firmware
Dell G7 7590 Firmware
Dell G7 7790 Firmware
Dell Embedded Box Pc 5000 Firmware
Dell Inspiron 3153 Firmware
Dell Inspiron 3158 Firmware
Dell Inspiron 5368 Firmware
Dell Inspiron 5378 Firmware
Dell Inspiron 5379 Firmware
Dell Inspiron 7353 Firmware
Dell Inspiron 7359 Firmware
Dell Inspiron 7368 Firmware
Dell Inspiron 7373 Firmware
Dell Inspiron 7378 Firmware
Dell Inspiron 7370 Firmware
8.8
CVSSv3
CVE-2019-1674
A vulnerability in the update service of Cisco Webex Meetings Desktop App and Cisco Webex Productivity Tools for Windows could allow an authenticated, local malicious user to execute arbitrary commands as a privileged user. The vulnerability is due to insufficient validation of u...
Cisco Webex Meetings Online T33.6.0
Cisco Webex Meetings Online T33.6.2
Cisco Webex Meetings Online T33.0.5
Cisco Webex Productivity Tools
Cisco Webex Meetings
Cisco Webex Meetings Online T33.6.1
1 EDB exploit
1 Article
4.8
CVSSv3
CVE-2018-20589
Ivan Cordoba Generic Content Management System (CMS) through 2018-04-28 has XSS via the Administrator/add_pictures.php article ID.
Generic Content Management System Project Generic Content Management System
7.8
CVSSv3
CVE-2018-15442
A vulnerability in the update service of Cisco Webex Meetings Desktop App for Windows could allow an authenticated, local malicious user to execute arbitrary commands as a privileged user. The vulnerability is due to insufficient validation of user-supplied parameters. An attacke...
Cisco Webex Meetings Desktop
Cisco Webex Productivity Tools
2 EDB exploits
1 Nmap script
6.5
CVSSv3
CVE-2017-16854
In Open Ticket Request System (OTRS) up to and including 3.3.20, 4 up to and including 4.0.26, 5 up to and including 5.0.24, and 6 up to and including 6.0.1, an attacker who is logged in as a customer can use the ticket search form to disclose internal article information of thei...
Otrs Otrs
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Debian Debian Linux 8.0
NA
CVE-2014-5117
Tor prior to 0.2.4.23 and 0.2.5 prior to 0.2.5.6-alpha maintains a circuit after an inbound RELAY_EARLY cell is received by a client, which makes it easier for remote malicious users to conduct traffic-confirmation attacks by using the pattern of RELAY and RELAY_EARLY cells as a ...
Torproject Tor 0.0.2
Torproject Tor 0.0.3
Torproject Tor 0.0.4
Torproject Tor 0.0.7.2
Torproject Tor 0.0.7.3
Torproject Tor 0.0.9.5
Torproject Tor 0.0.9.6
Torproject Tor 0.1.0.14
Torproject Tor 0.1.0.15
Torproject Tor 0.1.1.24
Torproject Tor 0.1.1.25
Torproject Tor 0.1.2.18
Torproject Tor 0.1.2.19
Torproject Tor 0.2.2.19
Torproject Tor 0.2.2.20
Torproject Tor 0.2.2.27
Torproject Tor 0.2.2.28
Torproject Tor 0.2.2.35
Torproject Tor 0.2.2.36
Torproject Tor 0.2.3.17
Torproject Tor 0.2.3.18
Torproject Tor 0.2.4.1
7.5
CVSSv3
CVE-2014-0160
The (1) TLS and (2) DTLS implementations in OpenSSL 1.0.1 prior to 1.0.1g do not properly handle Heartbeat Extension packets, which allows remote malicious users to obtain sensitive information from process memory via crafted packets that trigger a buffer over-read, as demonstrat...
Openssl Openssl
Filezilla-project Filezilla Server
Siemens Application Processing Engine Firmware 2.0
Siemens Cp 1543-1 Firmware 1.1
Siemens Simatic S7-1500 Firmware 1.5
Siemens Simatic S7-1500t Firmware 1.5
Siemens Elan-8.2
Siemens Wincc Open Architecture 3.12
Intellian V100 Firmware 1.20
Intellian V100 Firmware 1.21
Intellian V100 Firmware 1.24
Intellian V60 Firmware 1.15
Intellian V60 Firmware 1.25
Mitel Micollab 6.0
Mitel Micollab 7.0
Mitel Micollab 7.1
Mitel Micollab 7.2
Mitel Micollab 7.3.0.104
Mitel Micollab 7.3
Mitel Mivoice 1.1.3.3
Mitel Mivoice 1.2.0.11
Mitel Mivoice 1.3.2.2
4 EDB exploits
2 Nmap scripts
307 Github repositories
4 Articles
NA
CVE-2011-4909
Multiple cross-site scripting (XSS) vulnerabilities in Joomla! prior to 1.5.12 allow remote malicious users to inject arbitrary web script or HTML via the HTTP_REFERER header to (1) components/com_content/views/article/tmpl/form.php, (2) components/com_user/controller.php, (3) pl...
Joomla Joomla\\! 1.5.4
Joomla Joomla\\! 1.5.3
Joomla Joomla\\! 1.5.2
Joomla Joomla\\! 1.5.1
Joomla Joomla\\!
Joomla Joomla\\! 1.5.10
Joomla Joomla\\! 1.5.9
Joomla Joomla\\! 1.5.7
Joomla Joomla\\! 1.5.5
Joomla Joomla\\! 1.5.0
Joomla Joomla\\! 1.5.8
Joomla Joomla\\! 1.5.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »