Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
event list vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-20949
A vulnerability in the management web server of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote attacker with high privileges to execute configuration commands on an affected system. This vulnerability exists because access to HTTPS endpoints is...
Cisco Firepower Threat Defense 6.2.1
Cisco Firepower Threat Defense
Cisco Firepower Threat Defense 7.1.0.0
Cisco Firepower Threat Defense 7.2.0.1
Cisco Firepower Threat Defense 7.1.0.1
Cisco Firepower Threat Defense 7.1.0.2
Cisco Firepower Threat Defense 7.2.0
4.3
CVSSv2
CVE-2008-5939
Cross-site scripting (XSS) vulnerability in index.php in MODx CMS 0.9.6.2 and previous versions allows remote malicious users to inject arbitrary web script or HTML via a JavaScript event in the username field, possibly related to snippet.ditto.php. NOTE: some sources list the id...
Modxcms Modxcms 0.9.6.1
Modxcms Modxcms 0.9.0
Modxcms Modxcms
Modxcms Modxcms 0.9.5
Modxcms Modxcms 0.9.6
Modxcms Modxcms 0.9.2.1
Modxcms Modxcms 0.9.1
1 EDB exploit
5
CVSSv2
CVE-2020-3273
A vulnerability in the 802.11 Generic Advertisement Service (GAS) frame processing function of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote malicious user to cause an affected device to reload, resulting in a denial of service (DoS). The vul...
Cisco 5508 Wireless Controller Firmware 8.5\\(151.0\\)
Cisco 5508 Wireless Controller Firmware 8.10\\(204.92\\)
Cisco 5520 Wireless Controller Firmware 8.5\\(151.0\\)
Cisco 5520 Wireless Controller Firmware 8.10\\(204.92\\)
NA
CVE-2024-1126
The EventPrime – Events Calendar, Bookings and Tickets plugin for WordPress is vulnerable to unauthorized access of data due to a missing capability check on the get_attendees_email_by_event_id() function in all versions up to, and including, 3.4.1. This makes it possible f...
4.7
CVSSv2
CVE-2009-0935
The inotify_read function in the Linux kernel 2.6.27 to 2.6.27.13, 2.6.28 to 2.6.28.2, and 2.6.29-rc3 allows local users to cause a denial of service (OOPS) via a read with an invalid address to an inotify instance, which causes the device's event list mutex to be unlocked t...
Linux Linux Kernel 2.6.29
Linux Linux Kernel
NA
CVE-2024-26837
In the Linux kernel, the following vulnerability has been resolved: net: bridge: switchdev: Skip MDB replays of deferred events on offload Before this change, generation of the list of MDB events to replay would race against the creation of new group memberships, either from the ...
7.8
CVSSv2
CVE-2010-0584
Unspecified vulnerability in Cisco IOS 12.4, when NAT SCCP fragmentation support is enabled, allows remote malicious users to cause a denial of service (device reload) via crafted Skinny Client Control Protocol (SCCP) packets, aka Bug ID CSCsy09250.
Cisco Ios 12.4gc
Cisco Ios 12.4xg
Cisco Ios 12.4xj
Cisco Ios 12.4xt
Cisco Ios 12.4xv
Cisco Ios 12.4ye
Cisco Ios 12.4md
Cisco Ios 12.4mda
Cisco Ios 12.4xk
Cisco Ios 12.4xl
Cisco Ios 12.4xw
Cisco Ios 12.4xy
Cisco Ios 12.4sw
Cisco Ios 12.4t
Cisco Ios 12.4xm
Cisco Ios 12.4xn
Cisco Ios 12.4xp
Cisco Ios 12.4xz
Cisco Ios 12.4ya
Cisco Ios 12.4yg
Cisco Ios 12.4xe
Cisco Ios 12.4xf
6.5
CVSSv2
CVE-2006-4444
Multiple SQL injection vulnerabilities in Cybozu Garoon 2.1.0 for Windows allow remote authenticated users to execute arbitrary SQL commands via the (1) tid parameter in the (a) todo/view (aka TODO List View), (b) todo/modify (aka TODO List Modify), or (c) todo/delete functionali...
Cybozu Garoon 2.1.0 For Windows
1 EDB exploit
5.5
CVSSv2
CVE-2021-21318
Opencast is a free, open-source platform to support the management of educational audio and video content. In Opencast before version 9.2 there is a vulnerability in which publishing an episode with strict access rules will overwrite the currently set series access. This allows f...
Apereo Opencast
NA
CVE-2023-22461
The `sanitize-svg` package, a small SVG sanitizer to prevent cross-site scripting attacks, uses a deny-list-pattern to sanitize SVGs to prevent XSS. In doing so, literal `<script>`-tags and on-event handlers were detected in versions before 0.4.0. As a result, downstream so...
Sanitize-svg Project Sanitize-svg
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »