Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2024-4040
CVE-2024-4040 PoC Python exploit for CVE-2024-4040 Description A server side template injection vulnerability in CrushFTP in all versions before 10.7.1 and 11.1.0 on all platforms allows unauthenticated remote attackers to read files from the filesystem outside of the VFS Sandbox...
1 Github repository
NA
CVE-2024-25581
PowerDNS Security Advisory 2024-03: Transfer requests received over DoH can lead to a denial of service in DNSdist
NA
CVE-2024-27460
CVE-2024-27460 HP Plantronics Hub 3.2.1 Updater Privilege Escalation/Arbitrary File Read Description: Affected versions HP Plantronics Hub 3.2.1 Impacted service(s) Insecure Path: "C:\ProgramData\Plantronics\Spokes3G" Service: PlantronicsUpdateService Steps to reproduce...
1 Github repository
NA
CVE-2024-4331
Long Term Support Channel Update for ChromeOS
NA
CVE-2024-4761
Stable Channel Update for Desktop
NA
CVE-2024-31771
CVE-2024-31771 TotalAV Arbitrary File Write TotalAV version 6.0.x totalav_6_0_1028-latest.mp4 Timeline: 13th Feb, 2024 : Discovered 6.0.740 vulnerable and reported to TotalAV. 15th Feb, 2024: TotalAV confirmed and reproduced the issue. 19th Fe...
1 Github repository
NA
CVE-2024-3400
CVE-2024-3400 PoC for educational purposes only. only use on servers you have permission to test. How-To-Use deps: $ pip install rich scan targets.txt: $ python run.py -f targets.txt -t 10 [-] Sending 102 requests... [+] Requests sent. Writi...
1 Github repository
NA
CVE-2024-28075
SolarWinds ARM Deserialization of Untrusted Data Remote Code Execution. The SolarWinds Access Rights Manager was susceptible to Remote Code Execution Vulnerability This vulnerability allows an authenticated user to abuse SolarWinds service resulting in remote code execution.
NA
CVE-2024-23473
SolarWinds Access Rights Manager (ARM) Hard-Coded Credentials Authentication Bypass Vulnerability. The SolarWinds Access Rights Manager was found to contain a hard-coded credential authentication bypass vulnerability. If exploited, this vulnerability allows access to the RabbitMQ...
NA
CVE-2024-22774
Panoramic Dental Imaging Software 9.1.2.7600. Phantom DLL Hijack Privilege Escalation (CVE-2024-22774) Table of Contents Table of Contents Introduction Final Version of the Software Searching for Hijackable DLL Setting up the attack Exploit Persistance after OS install Introduc...
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »