Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
p1 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-28585
Magento versions 2.4.2 (and previous versions), 2.4.1-p1 (and previous versions) and 2.3.6-p1 (and previous versions) are affected by an Improper input validation vulnerability in the New customer WebAPI.Successful exploitation could allow an malicious user to send unsolicited sp...
Magento Magento
Magento Magento 2.3.6
Magento Magento 2.4.1
Magento Magento 2.4.2
7.5
CVSSv2
CVE-2006-3430
SQL injection vulnerability in checkprofile.asp in (1) PatchLink Update Server (PLUS) prior to 6.1 P1 and 6.2.x prior to 6.2 SR1 P1 and (2) Novell ZENworks 6.2 SR1 and previous versions, allows remote malicious users to execute arbitrary SQL commands via the agentid parameter.
Lumension Patchlink Update Server 6.1
Novell Zenworks
Lumension Patchlink Update Server 6.2.0.181
Lumension Patchlink Update Server 6.2.0.189
4.3
CVSSv2
CVE-2021-28583
Magento versions 2.4.2 (and previous versions), 2.4.1-p1 (and previous versions) and 2.3.6-p1 (and previous versions) are affected by a Violation of Secure Design Principles vulnerability in RMA PDF filename formats. Successful exploitation could allow an malicious user to get un...
Magento Magento
Magento Magento 2.3.6
Magento Magento 2.4.1
Magento Magento 2.4.2
5
CVSSv2
CVE-2010-0218
ISC BIND 9.7.2 up to and including 9.7.2-P1 uses an incorrect ACL to restrict the ability of Recursion Desired (RD) queries to access the cache, which allows remote malicious users to obtain potentially sensitive information via a DNS query.
Isc Bind 9.7.2
3.5
CVSSv2
CVE-2021-28556
Magento versions 2.4.2 (and previous versions), 2.4.1-p1 (and previous versions) and 2.3.6-p1 (and previous versions) are affected by a DOM-based Cross-Site Scripting vulnerability on mage-messages cookies. Successful exploitation could lead to arbitrary JavaScript execution by a...
Magento Magento
4
CVSSv2
CVE-2021-28567
Magento versions 2.4.2 (and previous versions), 2.4.1-p1 (and previous versions) and 2.3.6-p1 (and previous versions) are vulnerable to an Improper Authorization vulnerability in the customers module. Successful exploitation could allow a low-privileged user to modify customer da...
Magento Magento
6.4
CVSSv2
CVE-2021-28563
Magento versions 2.4.2 (and previous versions), 2.4.1-p1 (and previous versions) and 2.3.6-p1 (and previous versions) are affected by an Improper Authorization vulnerability via the 'Create Customer' endpoint. Successful exploitation could lead to unauthorized modificat...
Magento Magento
6.5
CVSSv2
CVE-2021-28584
Magento versions 2.4.2 (and previous versions), 2.4.1-p1 (and previous versions) and 2.3.6-p1 (and previous versions) are affected by a Path Traversal vulnerability when creating a store with child theme.Successful exploitation could lead to arbitrary file system write by an auth...
Magento Magento
Magento Magento 2.3.6
Magento Magento 2.4.1
Magento Magento 2.4.2
7.5
CVSSv2
CVE-2006-3425
FastPatch for (a) PatchLink Update Server (PLUS) prior to 6.1 P1 and 6.2.x prior to 6.2 SR1 P1, and (b) Novell ZENworks 6.2 SR1 and previous versions, does not require authentication for dagent/proxyreg.asp, which allows remote malicious users to list, add, or delete PatchLink Di...
Lumension Patchlink Update Server 6.2.0.189
Novell Zenworks
Lumension Patchlink Update Server 6.1
Lumension Patchlink Update Server 6.2.0.181
4
CVSSv2
CVE-2021-28566
Magento versions 2.4.2 (and previous versions), 2.4.1-p1 (and previous versions) and 2.3.6-p1 (and previous versions) are vulnerable to an Information Disclosure vulnerability when uploading a modified png file to a product image. Successful exploitation could lead to the disclos...
Magento Magento
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »