Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
field test vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-49254
Authenticated user can execute arbitrary commands in the context of the root user by providing payload in the "destination" field of the network test tools. This is similar to the vulnerability CVE-2021-28151 mitigated on the user interface level by blacklisting charact...
Hongdian H8951-4g-esp Firmware
312
VMScore
CVE-2018-16249
In Symphony prior to 3.3.0, there is XSS in the Title under Post. The ID "articleTitle" of this is stored in the "articleTitle" JSON field, and executes a payload when accessing the /member/test/points URI, allowing remote attacks. Any Web script or HTML can b...
B3log Symphony
NA
CVE-2021-47317
In the Linux kernel, the following vulnerability has been resolved: powerpc/bpf: Fix detecting BPF atomic instructions Commit 91c960b0056672 ("bpf: Rename BPF_XADD and prepare to encode other atomics in .imm") converted BPF_XADD to BPF_ATOMIC and added a way to distingu...
445
VMScore
CVE-2001-0977
slapd in OpenLDAP 1.x prior to 1.2.12, and 2.x prior to 2.0.8, allows remote malicious users to cause a denial of service (crash) via an invalid Basic Encoding Rules (BER) length field.
Mandrakesoft Mandrake Single Network Firewall 7.2
Openldap Openldap 1.1.2
Openldap Openldap 1.1.3
Openldap Openldap 1.2.2
Openldap Openldap 1.2.3
Openldap Openldap 2.0.1
Openldap Openldap 2.0.2
Openldap Openldap 1.1
Openldap Openldap 1.1.1
Openldap Openldap 1.2.11
Openldap Openldap 1.2.12
Openldap Openldap 1.2.9
Openldap Openldap 2.0
Openldap Openldap 2.0.7
Openldap Openldap 1.0
Openldap Openldap 1.0.1
Openldap Openldap 1.1.4
Openldap Openldap 1.2
Openldap Openldap 1.2.4
Openldap Openldap 1.2.5
Openldap Openldap 2.0.3
Openldap Openldap 2.0.4
312
VMScore
CVE-2020-29145
In Ericsson BSCS iX R18 Billing & Rating iX R18, ADMX is a web base module in BSCS iX that is vulnerable to stored XSS via the name or description field to a solutionUnitServlet?SuName=UserReferenceDataSU Access Rights Group. In most test cases, session hijacking was also pos...
Ericsson Bscs Ix R18 Billing \\& Rating Admx -
Ericsson Bscs Ix R18 Billing \\& Rating Mx -
NA
CVE-2021-47565
In the Linux kernel, the following vulnerability has been resolved: scsi: mpt3sas: Fix kernel panic during drive powercycle test While looping over shost's sdev list it is possible that one of the drives is getting removed and its sas_target object is freed but its sdev obje...
445
VMScore
CVE-2004-0218
isakmpd in OpenBSD 3.4 and previous versions allows remote malicious users to cause a denial of service (infinite loop) via an ISAKMP packet with a zero-length payload, as demonstrated by the Striker ISAKMP Protocol Test Suite.
Openbsd Openbsd
NA
CVE-2023-30628
Kiwi TCMS is an open source test management system. In kiwitcms/Kiwi v12.2 and prior and kiwitcms/enterprise v12.2 and prior, the `changelog.yml` workflow is vulnerable to command injection attacks because of using an untrusted `github.head_ref` field. The `github.head_ref` value...
Kiwitcms Kiwi Tcms
445
VMScore
CVE-2007-3012
The web interface in Fujitsu-Siemens Computers PRIMERGY BX300 Switch Blade allows remote malicious users to obtain sensitive information by canceling the authentication dialog when accessing a sub-page, which still displays the form field contents of the sub-page, as demonstrated...
Fujitsu Primergy Bx300
891
VMScore
CVE-2002-1357
Multiple SSH2 servers and clients do not properly handle packets or data elements with incorrect length specifiers, which may allow remote malicious users to cause a denial of service or possibly execute arbitrary code, as demonstrated by the SSHredder SSH protocol test suite.
Cisco Ios 12.1ea
Cisco Ios 12.1t
Cisco Ios 12.2t
Cisco Ios 12.2
Cisco Ios 12.2s
Cisco Ios 12.0s
Cisco Ios 12.0st
Cisco Ios 12.1e
Netcomposite Shellguard Ssh 3.4.6
Pragma Systems Secureshell 2.0
Putty Putty 0.53
Winscp Winscp 2.0.0
Putty Putty 0.48
Putty Putty 0.49
Fissh Ssh Client 1.0a For Windows
Intersoft Securenetterm 5.4.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »