Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-43553
A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and previous versions) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later.
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
NA
CVE-2023-30856
eDEX-UI is a science fiction terminal emulator. Versions 2.2.8 and prior are vulnerable to cross-site websocket hijacking. When running eDEX-UI and browsing the web, a malicious website can connect to eDEX's internal terminal control websocket, and send arbitrary commands to...
Edex-ui Project Edex-ui
445
VMScore
CVE-2020-27888
An issue exists on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly from a disconnected state. This may provide unintended network access.
Ui Unifi Meshing Access Point Firmware 4.3.21.11325
Ui Unifi Controller Firmware 6.0.28
312
VMScore
CVE-2022-25507
FreeTAKServer-UI v1.9.8 exists to contain a stored cross-site scripting (XSS) vulnerability via the Callsign parameter.
Freetakserver-ui Project Freetakserver-ui 1.9.8
578
VMScore
CVE-2022-25510
FreeTAKServer 1.9.8 contains a hardcoded Flask secret key which allows malicious users to create crafted cookies to bypass authentication or escalate privileges.
Freetakserver-ui Project Freetakserver-ui 1.9.8
356
VMScore
CVE-2022-25511
An issue in the ?filename= argument of the route /DataPackageTable in FreeTAKServer-UI v1.9.8 allows malicious users to place arbitrary files anywhere on the system.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2022-25512
FreeTAKServer-UI v1.9.8 exists to leak sensitive API and Websocket keys.
Freetakserver-ui Project Freetakserver-ui 1.9.8
356
VMScore
CVE-2022-25506
FreeTAKServer-UI v1.9.8 exists to contain a SQL injection vulnerability via the API endpoint /AuthenticateUser.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2022-25508
An access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 allows unauthenticated malicious users to cause a Denial of Service (DoS) via an unusually large amount of created routes, or create unsafe or false routes for legitimate users.
Freetakserver-ui Project Freetakserver-ui 1.9.8
516
VMScore
CVE-2018-3059
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI). Supported versions that are affected are 18.7, 18.8 and 18.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI...
Oracle Siebel Ui Framework 18.9
Oracle Siebel Ui Framework 18.8
Oracle Siebel Ui Framework 18.7
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »