Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-30856
eDEX-UI is a science fiction terminal emulator. Versions 2.2.8 and prior are vulnerable to cross-site websocket hijacking. When running eDEX-UI and browsing the web, a malicious website can connect to eDEX's internal terminal control websocket, and send arbitrary commands to...
Edex-ui Project Edex-ui
NA
CVE-2023-2373
A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Management Interface. The manipulation of the argument ecn-up leads to command injection. It is possible to initiate the a...
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
356
VMScore
CVE-2022-25506
FreeTAKServer-UI v1.9.8 exists to contain a SQL injection vulnerability via the API endpoint /AuthenticateUser.
Freetakserver-ui Project Freetakserver-ui 1.9.8
312
VMScore
CVE-2022-25507
FreeTAKServer-UI v1.9.8 exists to contain a stored cross-site scripting (XSS) vulnerability via the Callsign parameter.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2022-25508
An access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 allows unauthenticated malicious users to cause a Denial of Service (DoS) via an unusually large amount of created routes, or create unsafe or false routes for legitimate users.
Freetakserver-ui Project Freetakserver-ui 1.9.8
578
VMScore
CVE-2022-25510
FreeTAKServer 1.9.8 contains a hardcoded Flask secret key which allows malicious users to create crafted cookies to bypass authentication or escalate privileges.
Freetakserver-ui Project Freetakserver-ui 1.9.8
356
VMScore
CVE-2022-25511
An issue in the ?filename= argument of the route /DataPackageTable in FreeTAKServer-UI v1.9.8 allows malicious users to place arbitrary files anywhere on the system.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2022-25512
FreeTAKServer-UI v1.9.8 exists to leak sensitive API and Websocket keys.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2020-27888
An issue exists on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly from a disconnected state. This may provide unintended network access.
Ui Unifi Meshing Access Point Firmware 4.3.21.11325
Ui Unifi Controller Firmware 6.0.28
516
VMScore
CVE-2018-3059
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI). Supported versions that are affected are 18.7, 18.8 and 18.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI...
Oracle Siebel Ui Framework 18.9
Oracle Siebel Ui Framework 18.8
Oracle Siebel Ui Framework 18.7
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-5248
CVE-2024-3110
CVE-2024-5552
CVE-2024-29415
HTML injection
CVE-2024-3095
TCP
type confusion
CVE-2024-1800
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »