Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
connect vulnerabilities and exploits
(subscribe to this query)
578
VMScore
CVE-2021-22900
A vulnerability allowed multiple unrestricted uploads in Pulse Connect Secure prior to 9.1R11.4 that could lead to an authenticated administrator to perform a file write via a maliciously crafted archive upload in the administrator web interface.
Pulsesecure Pulse Connect Secure
Ivanti Connect Secure 9.1
Ivanti Connect Secure 9.0
605
VMScore
CVE-2013-2989
The file-copying functionality in IBM Sterling Connect:Direct 3.8.00, 4.0.00, and 4.1.0 for UNIX on AIX 6.1 up to and including 7.1 uses incorrect privileges, which allows local users to bypass filesystem read permissions and write permissions by leveraging authentication to the ...
Ibm Sterling Connect 4.1.0.0
Ibm Sterling Connect 4.0.00
Ibm Sterling Connect 3.8.00
356
VMScore
CVE-2017-1556
IBM API Connect 5.0.7.0 up to and including 5.0.7.2 is vulnerable to a regular expression attack that could allow an authenticated malicious user to use a regex and cause the system to slow or hang. IBM X-Force ID: 131546.
Ibm Api Connect 5.0.7.0
Ibm Api Connect 5.0.7.1
Ibm Api Connect 5.0.7.2
763
VMScore
CVE-2019-11510
In Pulse Secure Pulse Connect Secure (PCS) 8.2 prior to 8.2R12.1, 8.3 prior to 8.3R7.1, and 9.0 prior to 9.0R3.4, an unauthenticated remote attacker can send a specially crafted URI to perform an arbitrary file reading vulnerability .
Ivanti Connect Secure 9.0
Ivanti Connect Secure 8.2
Ivanti Connect Secure 8.3
1 EDB exploit
26 Github repositories
9 Articles
383
VMScore
CVE-2018-20807
An XSS issue has been found in welcome.cgi in Pulse Secure Pulse Connect Secure (PCS) 8.1.x prior to 8.1R12, 8.2.x prior to 8.2R9, and 8.3.x prior to 8.3R3 due to one of the URL parameters not being sanitized properly.
Ivanti Connect Secure 8.1
Ivanti Connect Secure 8.2
Ivanti Connect Secure 8.3
383
VMScore
CVE-2014-4551
Cross-site scripting (XSS) vulnerability in diagnostics/test.php in the Social Connect plugin 1.0.4 and previous versions for WordPress allows remote malicious users to inject arbitrary web script or HTML via the testing parameter.
Social Connect Project Social Connect
668
VMScore
CVE-2021-27376
An issue exists in the nb-connect crate prior to 1.0.3 for Rust. It may have invalid memory access for certain versions of the standard library because it relies on a direct cast of std::net::SocketAddrV4 and std::net::SocketAddrV6 data structures.
Nb-connect Project Nb-connect
312
VMScore
CVE-2015-7323
The Secure Meeting (Pulse Collaboration) in Pulse Connect Secure (formerly Juniper Junos Pulse) prior to 7.1R22.1, 7.4, 8.0 prior to 8.0R11, and 8.1 prior to 8.1R3 allows remote authenticated users to bypass intended access restrictions and log into arbitrary meetings by leveragi...
Juniper Pulse Connect Secure 8.0
Juniper Pulse Connect Secure 8.1
Juniper Pulse Connect Secure 7.1
Juniper Pulse Connect Secure 7.4
890
VMScore
CVE-2007-2712
Unspecified vulnerability in MH Software Connect Daily prior to 3.3.3 has unknown impact and attack vectors.
Mh Software Connect Daily 3.2.8
Mh Software Connect Daily 3.2.9
Mh Software Connect Daily 3.3
Mh Software Connect Daily 3.3.2
445
VMScore
CVE-2015-7322
The Secure Meeting (Pulse Collaboration) in Pulse Connect Secure (formerly Juniper Junos Pulse) prior to 7.1R22.1, 7.4, 8.0 prior to 8.0R11, and 8.1 prior to 8.1R3 provides different messages for attempts to join a meeting depending on the status of the meeting, which allows remo...
Juniper Pulse Connect Secure 7.1
Juniper Pulse Connect Secure 7.4
Juniper Pulse Connect Secure 8.0
Juniper Pulse Connect Secure 8.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »