Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote vulnerabilities and exploits
(subscribe to this query)
2.1
CVSSv2
CVE-2012-0959
Remote Login Service (RLS) 1.0.0 does not properly clear account information when switching users, which might allow physically proximate users to obtain login credentials.
Remote Login Service Hackers Remote Login Service 1.0.0
4.3
CVSSv2
CVE-2021-36755
Nightscout Web Monitor (aka cgm-remote-monitor) 14.2.2 allows XSS via a crafted X-Forwarded-For header.
Cgm-remote-monitor Project Cgm-remote-monitor 14.2.2
6.5
CVSSv2
CVE-2019-18871
A path traversal in debug.php accessed via default.php in Blaauw Remote Kiln Control through v3.00r4 allows an authenticated malicious user to upload arbitrary files, leading to arbitrary remote code execution.
Blaauwproducts Remote Kiln Control 3.0.0
Blaauwproducts Remote Kiln Control
7.5
CVSSv2
CVE-2020-7606
docker-compose-remote-api up to and including 0.1.4 allows execution of arbitrary commands. Within 'index.js' of the package, the function 'exec(serviceName, cmd, fnStdout, fnStderr, fnExit)' uses the variable 'serviceName' which can be controlled by...
Docker-compose-remote-api Project Docker-compose-remote-api
5
CVSSv2
CVE-2019-18865
Information disclosure via error message discrepancies in authentication functions in Blaauw Remote Kiln Control through v3.00r4 allows an unauthenticated malicious user to enumerate valid usernames.
Blaauwproducts Remote Kiln Control
Blaauwproducts Remote Kiln Control 3.0.0
5
CVSSv2
CVE-2019-18868
Blaauw Remote Kiln Control through v3.00r4 allows an unauthenticated malicious user to access MySQL credentials in cleartext in /engine/db.inc, /lang/nl.bak, or /lang/en.bak.
Blaauwproducts Remote Kiln Control 3.0.0
Blaauwproducts Remote Kiln Control
4
CVSSv2
CVE-2019-18870
A path traversal via the iniFile parameter in excel.php in Blaauw Remote Kiln Control through v3.00r4 allows an authenticated malicious user to download arbitrary files from the host machine.
Blaauwproducts Remote Kiln Control
Blaauwproducts Remote Kiln Control 3.0.0
4.6
CVSSv2
CVE-2021-31338
A vulnerability has been identified in SINEMA Remote Connect Client (All versions < V3.0 SP1). Affected devices allow to modify configuration settings over an unauthenticated channel. This could allow a local malicious user to escalate privileges and execute own code on the de...
Siemens Sinema Remote Connect
Siemens Sinema Remote Connect 3.0
5
CVSSv2
CVE-2019-18864
/server-info and /server-status in Blaauw Remote Kiln Control through v3.00r4 allow an unauthenticated malicious user to gain sensitive information about the host machine.
Blaauwproducts Remote Kiln Control 3.0.0
Blaauwproducts Remote Kiln Control
5
CVSSv2
CVE-2019-18866
Unauthenticated SQL injection via the username in the login mechanism in Blaauw Remote Kiln Control through v3.00r4 allows a user to extract arbitrary data from the rkc database.
Blaauwproducts Remote Kiln Control 3.0.0
Blaauwproducts Remote Kiln Control
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »