Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web vulnerability scanner vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2010-0738
The JMX-Console web application in JBossAs in Red Hat JBoss Enterprise Application Platform (aka JBoss EAP or JBEAP) 4.2 prior to 4.2.0.CP09 and 4.3 prior to 4.3.0.CP08 performs access control only for the GET and POST methods, which allows remote malicious users to send requests...
Redhat Jboss Enterprise Application Platform 4.2.0
Redhat Jboss Enterprise Application Platform 4.2
Redhat Jboss Enterprise Application Platform 4.3.0
Redhat Jboss Enterprise Application Platform 4.3
4 EDB exploits
2 Nmap scripts
4 Github repositories
1 Article
4.3
CVSSv2
CVE-2009-4214
Cross-site scripting (XSS) vulnerability in the strip_tags function in Ruby on Rails prior to 2.2.s, and 2.3.x prior to 2.3.5, allows remote malicious users to inject arbitrary web script or HTML via vectors involving non-printing ASCII characters, related to HTML::Tokenizer and ...
Rubyonrails Rails 2.3.2
Rubyonrails Rails 2.3.3
Rubyonrails Rails 2.3.4
Rubyonrails Rails 1.9.5
Rubyonrails Rails 1.2.5
Rubyonrails Rails 1.1.5
Rubyonrails Rails 1.1.3
Rubyonrails Ruby On Rails 0.8.0
Rubyonrails Ruby On Rails 0.9.0
Rubyonrails Ruby On Rails 0.5.0
Rubyonrails Ruby On Rails 0.5.6
Rubyonrails Rails 0.13.0
Rubyonrails Rails 0.14.1
Rubyonrails Rails 0.11.0
Rubyonrails Rails 2.1.1
Rubyonrails Rails 2.0.4
Rubyonrails Rails 2.0.0
Rubyonrails Rails 2.0.1
Rubyonrails Rails 1.1.2
Rubyonrails Rails 1.1.1
Rubyonrails Rails 1.1.0
Rubyonrails Rails 1.0.0
6.1
CVSSv2
CVE-2009-0058
The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x prior to 4.2.176.0 and 5.x prior to 5.2 allow remote malicious users to cause a denial of service (web authen...
Cisco Catalyst 6500 Series Integrated Wireless Lan Controller 4.1
Cisco Catalyst 3750 Series Integrated Wireless Lan Controller 4.1
Cisco Catalyst 7600 Series Wireless Lan Controller 4.1
Cisco Wireless Lan Controller Software 4.1
Cisco Wireless Lan Controller Software 4.2
Cisco Catalyst 6500 Series Integrated Wireless Lan Controller 4.2
Cisco Catalyst 3750 Series Integrated Wireless Lan Controller 4.2
Cisco 4400 Wireless Lan Controller 4.2
Cisco 4400 Wireless Lan Controller 5.2
Cisco Catalyst 7600 Series Wireless Lan Controller 5.2
Cisco Catalyst 7600 Series Wireless Lan Controller 4.2
Cisco Wireless Lan Controller Software 5.2
Cisco 4400 Wireless Lan Controller 4.1
Cisco Catalyst 6500 Series Integrated Wireless Lan Controller 5.2
Cisco Catalyst 3750 Series Integrated Wireless Lan Controller 5.2
9.3
CVSSv2
CVE-2008-1116
Insecure method vulnerability in the Web Scan Object ActiveX control (OL2005.dll) in Rising Antivirus Online Scanner allows remote malicious users to force the download and execution of arbitrary code by setting the BaseURL property and invoking the UpdateEngine method. NOTE: som...
Rising Antivirus International Rising Web Scan Object 18.0.7
1 EDB exploit
4.3
CVSSv2
CVE-2008-1073
Cross-site scripting (XSS) vulnerability in the report interface in Internet Security Systems (ISS) Internet Scanner 7.0 Service Pack 2 Build 7.2.2005.52 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Internet Security Systems Internet Scanner 7.0 Sp2
4.3
CVSSv2
CVE-2007-3546
Cross-site scripting (XSS) vulnerability in the Windows GUI in Nessus Vulnerability Scanner prior to 3.0.6 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Nessus Nessus
1.9
CVSSv2
CVE-2007-0120
Acunetix Web Vulnerability Scanner (WVS) 4.0 Build 20060717 and previous versions allows remote malicious users to cause a denial of service (application crash) via multiple HTTP requests containing invalid Content-Length values.
Acunetix Web Vulnerability Scanner
1 EDB exploit
5.1
CVSSv2
CVE-2006-1989
Buffer overflow in the get_database function in the HTTP client in Freshclam in ClamAV 0.80 to 0.88.1 might allow remote web servers to execute arbitrary code via long HTTP headers.
Clam Anti-virus Clamav 0.88.1
Clam Anti-virus Clamav 0.88
4.3
CVSSv2
CVE-2005-4574
Cross-site scripting (XSS) vulnerability in loader.cfm in PaperThin CommonSpot Content Server 4.5 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the bNewWindow parameter.
Paperthin Commonspot Content Server 2.5
Paperthin Commonspot Content Server 3.0
Paperthin Commonspot Content Server
Paperthin Commonspot Content Server 3.2
Paperthin Commonspot Content Server 4.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4