Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
id vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2004-2596
Quake II server before R1Q2, as used in multiple products, allows remote malicious users to cause a denial of service (exhaustion of connection slots) via a large number of connections from the same IP address.
Id Software Quake Ii Server 3.21
Id Software Quake Ii Server 3.20
NA
CVE-2004-2597
Quake II server before R1Q2, as used in multiple products, allows remote malicious users to bypass IP-based access control rules via a userinfo string that already contains an "ip" key/value pair but is also long enough to cause a new key/value pair to be truncated, whi...
Id Software Quake Ii Server 3.20
Id Software Quake Ii Server 3.21
NA
CVE-2006-3400
Stack-based buffer overflow in the CG_ServerCommand function in Quake 3 Engine as used by Soldier of Fortune 2 (SOF2MP) GOLD 1.03 allows remote malicious users to cause a denial of service and possibly execute code by sending a long command from the server.
Id Software Quake 3 Engine Icculus 812
Raven Software Soldier Of Fortune 2 1.03
Id Software Quake 3 Engine 1.32b
Id Software Quake 3 Engine 1.32c
1 EDB exploit
NA
CVE-2004-2594
Absolute path traversal vulnerability in Quake II server before R1Q2 on Windows, as used in multiple products, allows remote malicious users to read arbitrary files via a "\/" in a pathname argument, as demonstrated by "download \/server.cfg".
Id Software Quake Ii Server Windows 3.20
Id Software Quake Ii Server Windows 3.21
NA
CVE-2004-2595
Absolute path traversal vulnerability in Quake II server before R1Q2 on Linux, as used in multiple products, allows remote malicious users to cause a denial of service (application crash) via a download command with a full pathname for a directory in the argument, which causes th...
Id Software Quake Ii Server Linux 3.20
Id Software Quake Ii Server Linux 3.21
9.8
CVSSv3
CVE-2021-45411
In Sourcecodetester Printable Staff ID Card Creator System 1.0 after compromising the database via SQLi, an attacker can log in and leverage an arbitrary file upload vulnerability to obtain remote code execution.
Printable Staff Id Card Creator System Project Printable Staff Id Card Creator System 1.0
9.8
CVSSv3
CVE-2019-6139
Forcepoint User ID (FUID) server versions up to 1.2 have a remote arbitrary file upload vulnerability on TCP port 5001. Successful exploitation of this vulnerability may lead to remote code execution. To fix this vulnerability, upgrade to FUID version 1.3 or higher. To prevent th...
Forcepoint User Id
6.3
CVSSv3
CVE-2023-6073
Attacker can perform a Denial of Service attack to crash the ICAS 3 IVI ECU in a Volkswagen ID.3 (and other vehicles of the VW Group with the same hardware) and spoof volume setting commands to irreversibly turn on audio volume to maximum via REST API calls.
Volkswagen Id.3 Firmware
9.8
CVSSv3
CVE-2023-33367
A SQL injection vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing unauthenticated malicious users to write PHP files on the server's root directory, resulting in remote code execution.
Assaabloy Control Id Idsecure
9.1
CVSSv3
CVE-2023-33369
A path traversal vulnerability exists in Control ID IDSecure 4.7.26.0 and prior, allowing malicious users to delete arbitrary files on IDSecure filesystem, causing a denial of service.
Assaabloy Control Id Idsecure
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »