Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2013-1592
A Buffer Overflow vulnerability exists in the Message Server service _MsJ2EE_AddStatistics() function when sending specially crafted SAP Message Server packets to remote TCP ports 36NN and/or 39NN in SAP NetWeaver 2004s, 7.01 SR1, 7.02 SP06, and 7.30 SP04, which could let a remot...
Sap Netweaver 2004s
Sap Netweaver 7.01
Sap Netweaver 7.02
Sap Netweaver 7.30
1 EDB exploit
1000
VMScore
CVE-2014-5007
Directory traversal vulnerability in the agentLogUploader servlet in ZOHO ManageEngine Desktop Central (DC) and Desktop Central Managed Service Providers (MSP) edition prior to 9 build 90055 allows remote malicious users to write to and execute arbitrary files as SYSTEM via a .. ...
Zohocorp Manageengine Desktop Central
Zohocorp Manageengine Desktop Central Managed Service Providers
3 EDB exploits
1000
VMScore
CVE-2015-7874
Buffer overflow in the chat server in KiTTY Portable 0.65.0.2p and previous versions allows remote malicious users to execute arbitrary code via a long nickname.
Portapps Kitty Portable
1 EDB exploit
1000
VMScore
CVE-2012-4284
A Privilege Escalation vulnerability exists in Viscosity 1.4.1 on Mac OS X due to a path name validation issue in the setuid-set ViscosityHelper binary, which could let a remote malicious user execute arbitrary code
Sparklabs Viscosity 1.4.1
2 EDB exploits
1000
VMScore
CVE-2014-8516
Unrestricted file upload vulnerability in Visual Mining NetCharts Server allows remote malicious users to execute arbitrary code by uploading a file with an executable extension, then accessing it via unspecified vectors.
Cloudfastpath Netcharts Server -
1 EDB exploit
1000
VMScore
CVE-2012-5878
Bulb Security Smartphone Pentest Framework (SPF) 0.1.2 up to and including 0.1.4 allows remote malicious users to execute arbitrary commands via shell metacharacters in the hostingPath parameter to (1) SEAttack.pl or (2) CSAttack.pl in frameworkgui/ or the (3) appURLPath paramete...
Bulbsecurity Smartphone Pentest Framework
1 EDB exploit
1000
VMScore
CVE-2011-2523
vsftpd 2.3.4 downloaded between 20110630 and 20110703 contains a backdoor which opens a shell on port 6200/tcp.
Vsftpd Project Vsftpd 2.3.4
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
2 Nmap scripts
42 Github repositories
1000
VMScore
CVE-2011-2921
ktsuss versions 1.4 and prior has the uid set to root and does not drop privileges prior to executing user specified commands, which can result in command execution with root privileges.
Ktsuss Project Ktsuss
1 EDB exploit
1000
VMScore
CVE-2011-1930
In klibc 1.5.20 and 1.5.21, the DHCP options written by ipconfig to /tmp/net-$DEVICE.conf are not properly escaped. This may allow a remote malicious user to send a specially crafted DHCP reply which could execute arbitrary code with the privileges of any process which sources DH...
Klibc Project Klibc
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
1 EDB exploit
1000
VMScore
CVE-2019-14931
An issue exists on Mitsubishi Electric ME-RTU devices up to and including 2.02 and INEA ME-RTU devices up to and including 3.0. An unauthenticated remote OS Command Injection vulnerability allows an malicious user to execute arbitrary commands on the RTU due to the passing of uns...
Mitsubishielectric Smartrtu Firmware
Inea Me-rtu Firmware
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
buffer overflow
type confusion
server-side request forgery
CVE-2024-38440
CVE-2024-27801
CVE-2024-5868
CVE-2024-0582
CVE-2024-37643
CVE-2024-3105
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »