Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
websense vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-4605
The default configuration of the SMTP component in Websense Email Security 6.1 up to and including 7.3 enables weak SSL ciphers in the "SurfControl plc\SuperScout Email Filter\SMTP" registry key, which makes it easier for remote malicious users to obtain sensitive infor...
Websense Websense Email Security 7.0
Websense Websense Email Security 7.2
Websense Websense Email Security 7.1
Websense Websense Email Security 6.1
NA
CVE-2009-5119
The default configuration of Apache Tomcat in Websense Manager in Websense Web Security 7.0 and Web Filter 7.0 enables weak SSL ciphers in conf/server.xml, which makes it easier for remote malicious users to obtain sensitive information by sniffing the network and then conducting...
Websense Websense Web Filter 7.0
Websense Websense Web Security 7.0
NA
CVE-2009-5121
Websense Email Security 7.1 before Hotfix 4 allows remote malicious users to bypass the sender-based blacklist by using the 8BITMIME EHLO keyword in the SMTP session.
Websense Websense Email Security 7.1
NA
CVE-2009-3748
Multiple cross-site scripting (XSS) vulnerabilities in the Web Administrator in Websense Personal Email Manager 7.1 before Hotfix 4 and Email Security 7.1 before Hotfix 4 allow remote malicious users to inject arbitrary web script or HTML via the (1) FileName, (2) IsolatedMessage...
Websense Personal Email Manager 7.1
Websense Websense Email Security 7.1
1 EDB exploit
NA
CVE-2009-3749
The Web Administrator service (STEMWADM.EXE) in Websense Personal Email Manager 7.1 before Hotfix 4 and Email Security 7.1 before Hotfix 4 allows remote malicious users to cause a denial of service (crash) by sending a HTTP GET request to TCP port 8181 and closing the socket befo...
Websense Personal Email Manager 7.1
Websense Email Security 7.1
1 EDB exploit
NA
CVE-2008-4646
The Websense Reporter Module in Websense Enterprise 6.3.2 stores the SQL database system administrator password in plaintext in CreateDbInstall.log, which allows local users to gain privileges to the database.
Websense Enterpise 6.3.2
NA
CVE-2007-6511
Websense Enterprise 6.3.1 allows remote malicious users to bypass content filtering by visiting http URLs with a (1) RealPlayer G2, (2) MSMSGS, or (3) StoneHttpAgent User-Agent header, which results in a Non-HTTP categorization.
Websense Enterpise 6.3.1
NA
CVE-2007-6312
Cross-site scripting (XSS) vulnerability in the logon page in Web Reporting Tools portal in Websense Enterprise and Web Security Suite 6.3 allows remote malicious users to inject arbitrary web script or HTML via the username field.
Websense Web Security Suite 6.3
Websense Web Security Suite 6.3.1
Websense Reporting Tools 6.3
Websense Reporting Tools 6.3.1
Websense Enterpise 6.3
Websense Enterpise 6.3.1
NA
CVE-2006-0515
Cisco PIX/ASA 7.1.x prior to 7.1(2) and 7.0.x prior to 7.0(5), PIX 6.3.x prior to 6.3.5(112), and FWSM 2.3.x prior to 2.3(4) and 3.x prior to 3.1(7), when used with Websense/N2H2, allows remote malicious users to bypass HTTP access restrictions by splitting the GET method of an H...
Cisco Adaptive Security Appliance Software 7.0
Cisco Adaptive Security Appliance Software 7.0\\(4\\)
Cisco Adaptive Security Appliance Software 7.0.1.4
Cisco Adaptive Security Appliance Software 7.0.4.3
Cisco Pix Firewall 6.2.2.111
Cisco Pix Firewall 6.2.3 \\(110\\)
Cisco Pix Firewall 6.3.3 \\(133\\)
Cisco Firewall Services Module 2.3
Cisco Firewall Services Module 3.1
Cisco Pix Firewall 6.1.5\\(104\\)
Cisco Pix Firewall Software 2.7
Cisco Pix Firewall Software 3.0
Cisco Pix Firewall Software 3.1
Cisco Pix Firewall Software 4.0
Cisco Pix Firewall Software 4.1\\(6\\)
Cisco Pix Firewall Software 4.1\\(6b\\)
Cisco Pix Firewall Software 4.2
Cisco Pix Firewall Software 4.2\\(1\\)
Cisco Pix Firewall Software 4.2\\(2\\)
Cisco Pix Firewall Software 4.2\\(5\\)
Cisco Pix Firewall Software 4.3
Cisco Pix Firewall Software 4.4
1 EDB exploit
NA
CVE-2006-2035
Websense, when configured to permit access to the dynamic content category, allows local users to bypass intended blocking of the Uncategorized category by appending a "/?" sequence to a URL.
Websense Websense
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3661
open redirect
CVE-2024-25512
CVE-2024-33788
command injection
SSTI
CVE-2024-0043
CVE-2024-29210
CVE-2024-25510
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5