Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authentication manager vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2018-1160
Netatalk prior to 3.1.12 is vulnerable to an out of bounds write in dsi_opensess.c. This is due to lack of bounds checking on attacker controlled data. A remote unauthenticated attacker can leverage this vulnerability to achieve arbitrary code execution.
Netatalk Netatalk
Synology Skynas -
Synology Diskstation Manager
Synology Router Manager
Synology Vs960hd Firmware -
Debian Debian Linux 9.0
1 EDB exploit
3 Github repositories
7.5
CVSSv2
CVE-2008-6371
SQL injection vulnerability in login.asp in Ocean12 Membership Manager Pro allows remote malicious users to execute arbitrary SQL commands via the username (Username parameter).
Ocean12tech Membership Manager Pro -
1 EDB exploit
7.5
CVSSv2
CVE-2008-6390
SQL injection vulnerability in login.asp in Ocean12 Membership Manager Pro allows remote malicious users to execute arbitrary SQL commands via the Password parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information...
Ocean12tech Membership Manager Pro -
1 EDB exploit
6.5
CVSSv2
CVE-2018-1418
IBM Security QRadar SIEM 7.2 and 7.3 could allow a user to bypass authentication which could lead to code execution. IBM X-Force ID: 138824.
Ibm Qradar Security Information And Event Manager
Ibm Qradar Security Information And Event Manager 7.3.0
Ibm Qradar Security Information And Event Manager 7.3.1
Ibm Qradar Security Information And Event Manager 7.2.8
1 EDB exploit
10
CVSSv2
CVE-2008-5649
SQL injection vulnerability in admin/admin.php in AlstraSoft Article Manager Pro 1.6 allows remote malicious users to execute arbitrary SQL commands via the username parameter.
Alstrasoft Article Manager Pro 1.6
1 EDB exploit
7.5
CVSSv2
CVE-2006-5934
SQL injection vulnerability in admin/default.asp in Estate Agent Manager 1.3 and previous versions allows remote malicious users to execute arbitrary SQL commands via the UserName field.
Iexpress Estate Agent Manager 1.3
1 EDB exploit
NA
CVE-2023-40058
Sensitive data was added to our public-facing knowledgebase that, if exploited, could be used to access components of Access Rights Manager (ARM) if the threat actor is in the same environment.
Solarwinds Access Rights Manager
10
CVSSv2
CVE-2019-15958
A vulnerability in the REST API of Cisco Prime Infrastructure (PI) and Cisco Evolved Programmable Network Manager (EPNM) could allow an unauthenticated remote malicious user to execute arbitrary code with root privileges on the underlying operating system. The vulnerability is du...
Cisco Prime Infrastructure
Cisco Prime Infrastructure 3.6
Cisco Evolved Programmable Network Manager
7.5
CVSSv2
CVE-2005-4657
Ocean12 Calendar Manager Pro 1.01 allows remote malicious users to bypass authentication and obtain sensitive information via a direct request to /admin/view.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Ocean12 Technologies Calendar Manager Pro 1.01
1 EDB exploit
6.8
CVSSv2
CVE-2009-4732
SQL injection vulnerability in tt/index.php in TT Web Site Manager 0.5, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the tt_name parameter. NOTE: some of these details are obtained from third party information.
Technotoad Tt Web Site Manager 0.5
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »