Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
p1 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-8953
The HAProxy package prior to 0.59_16 for pfSense has XSS via the desc (aka Description) or table_actionsaclN parameter, related to haproxy_listeners.php and haproxy_listeners_edit.php.
Netgate Haproxy
1 EDB exploit
9.1
CVSSv3
CVE-2022-36437
The Connection handler in Hazelcast and Hazelcast Jet allows a remote unauthenticated malicious user to access and manipulate data in the cluster with the identity of another already authenticated connection. The affected Hazelcast versions are up to and including 4.0.6, 4.1.9, 4...
Hazelcast Hazelcast-jet
Hazelcast Hazelcast
NA
CVE-2004-2205
Unknown vulnerability in Veritas Cluster Server 1.0.1 up to and including 4.0 allows local users to gain root access via unspecified vectors.
Symantec Veritas Cluster Server 3.5 Solaris Mp3
Symantec Veritas Cluster Server 2.0 Solaris
Symantec Veritas Cluster Server 2.0 Aix
Symantec Veritas Cluster Server 2.2 Linux
Symantec Veritas Cluster Server 1.3.1 Hp-ux
Symantec Veritas Cluster Server 2.0 Linux
Symantec Veritas Cluster Server 2.0 P3
Symantec Veritas Cluster Server 2.2 Mp1
Symantec Veritas Cluster Server 3.5 Mp2
Symantec Veritas Cluster Server 4.0 Linux Beta
Symantec Veritas Cluster Server 2.1 Linux
Symantec Veritas Cluster Server 1.3 P1
Symantec Veritas Cluster Server 2.0 P2
Symantec Veritas Cluster Server 4.0 Solaris
Symantec Veritas Cluster Server 2.0 Solaris Ga
Symantec Veritas Cluster Server 4.0 Solaris Beta
Symantec Veritas Cluster Server 3.5 Hp-ux
Symantec Veritas Cluster Server 1.3 Solaris Pre-ga
Symantec Veritas Cluster Server 1.3
Symantec Veritas Cluster Server 3.5.1 Aix
Symantec Veritas Cluster Server 3.5 Aix
Symantec Veritas Cluster Server 1.0.1 Solaris
NA
CVE-2007-2889
SQL injection vulnerability in tracking/courseLog.php in Dokeos 1.6.5 and previous versions allows remote malicious users to execute arbitrary SQL commands via the scormcontopen parameter.
Dokeos Open Source Learning And Knowledge Management Tool 1.5
Dokeos Open Source Learning And Knowledge Management Tool 1.6 Rc2
Dokeos Open Source Learning And Knowledge Management Tool 1.5.3
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4
Dokeos Open Source Learning And Knowledge Management Tool 1.5.5
Dokeos Open Source Learning And Knowledge Management Tool 1.5.4
Dokeos Open Source Learning And Knowledge Management Tool 1.6.5
Dokeos Open Source Learning And Knowledge Management Tool 1.4
Dokeos Open Source Learning And Knowledge Management Tool 1.6.4 P1
1 EDB exploit
NA
CVE-2004-0416
Double free vulnerability for the error_prog_name string in CVS 1.12.x up to and including 1.12.8, and 1.11.x up to and including 1.11.16, may allow remote malicious users to execute arbitrary code.
Openpkg Openpkg 2.0
Cvs Cvs 1.11.14
Cvs Cvs 1.11.1
Cvs Cvs 1.11
Cvs Cvs 1.12.2
Cvs Cvs 1.11.4
Cvs Cvs 1.12.7
Sgi Propack 3.0
Cvs Cvs 1.12.5
Openpkg Openpkg 1.3
Cvs Cvs 1.11.16
Cvs Cvs 1.11.5
Cvs Cvs 1.10.8
Cvs Cvs 1.11.15
Cvs Cvs 1.11.11
Cvs Cvs 1.12.8
Cvs Cvs 1.11.6
Cvs Cvs 1.12.1
Cvs Cvs 1.11.3
Cvs Cvs 1.11.2
Cvs Cvs 1.11.10
Sgi Propack 2.4
1 EDB exploit
NA
CVE-2004-0417
Integer overflow in the "Max-dotdot" CVS protocol command (serve_max_dotdot) for CVS 1.12.x up to and including 1.12.8, and 1.11.x up to and including 1.11.16, may allow remote malicious users to cause a server crash, which could cause temporary data to remain undeleted...
Openpkg Openpkg 2.0
Cvs Cvs 1.11.14
Cvs Cvs 1.11.1
Cvs Cvs 1.11
Cvs Cvs 1.12.2
Cvs Cvs 1.11.4
Cvs Cvs 1.12.7
Sgi Propack 3.0
Cvs Cvs 1.12.5
Openpkg Openpkg 1.3
Cvs Cvs 1.11.16
Cvs Cvs 1.11.5
Cvs Cvs 1.10.8
Cvs Cvs 1.11.15
Cvs Cvs 1.11.11
Cvs Cvs 1.12.8
Cvs Cvs 1.11.6
Cvs Cvs 1.12.1
Cvs Cvs 1.11.3
Cvs Cvs 1.11.2
Cvs Cvs 1.11.10
Sgi Propack 2.4
NA
CVE-2004-0418
serve_notify in CVS 1.12.x up to and including 1.12.8, and 1.11.x up to and including 1.11.16, does not properly handle empty data lines, which may allow remote malicious users to perform an "out-of-bounds" write for a single byte to execute arbitrary code or modify cri...
Openpkg Openpkg 2.0
Cvs Cvs 1.11.14
Cvs Cvs 1.11.1
Cvs Cvs 1.11
Cvs Cvs 1.12.2
Cvs Cvs 1.11.4
Cvs Cvs 1.12.7
Sgi Propack 3.0
Cvs Cvs 1.12.5
Openpkg Openpkg 1.3
Cvs Cvs 1.11.16
Cvs Cvs 1.11.5
Cvs Cvs 1.10.8
Cvs Cvs 1.11.15
Cvs Cvs 1.11.11
Cvs Cvs 1.12.8
Cvs Cvs 1.11.6
Cvs Cvs 1.12.1
Cvs Cvs 1.11.3
Cvs Cvs 1.11.2
Cvs Cvs 1.11.10
Sgi Propack 2.4
NA
CVE-2004-0414
CVS 1.12.x up to and including 1.12.8, and 1.11.x up to and including 1.11.16, does not properly handle malformed "Entry" lines, which prevents a NULL terminator from being used and may lead to a denial of service (crash), modification of critical program data, or arbit...
Openpkg Openpkg 2.0
Cvs Cvs 1.11.14
Cvs Cvs 1.11.1
Cvs Cvs 1.11
Cvs Cvs 1.12.2
Cvs Cvs 1.11.4
Cvs Cvs 1.12.7
Sgi Propack 3.0
Cvs Cvs 1.12.5
Openpkg Openpkg 1.3
Cvs Cvs 1.11.16
Cvs Cvs 1.11.5
Cvs Cvs 1.10.8
Cvs Cvs 1.11.15
Cvs Cvs 1.11.11
Cvs Cvs 1.12.8
Cvs Cvs 1.11.6
Cvs Cvs 1.12.1
Cvs Cvs 1.11.3
Cvs Cvs 1.11.2
Cvs Cvs 1.11.10
Sgi Propack 2.4
6.8
CVSSv3
CVE-2020-8336
Lenovo implemented Intel CSME Anti-rollback ARB protections on some ThinkPad models to prevent roll back of CSME Firmware in flash.
Lenovo Thinkpad E14 Firmware
Lenovo Thinkpad E15 Firmware
Lenovo Thinkpad R14 Firmware
Lenovo Thinkpad S3 Gen 2 Firmware
Lenovo Thinkpad E490s Firmware
Lenovo Thinkpad S3 Firmware
Lenovo Thinkpad E490 Firmware
Lenovo Thinkpad E590 Firmware
Lenovo Thinkpad R490 Firmware
Lenovo Thinkpad R590 Firmware
Lenovo Thinkpad L13 1st Gen Firmware
Lenovo Thinkpad L1415 Gen 1 Firmware
Lenovo Thinkpad L390 Yoga Firmware
Lenovo Thinkpad S2 Yoga 4th Gen Firmware
Lenovo Thinkpad L490 Firmware
Lenovo Thinkpad L590 Firmware
Lenovo Thinkpad P1 (20mx) Firmware
Lenovo Thinkpad P1 (20qx) Firmware
Lenovo Thinkpad P43s (20rx) Firmware
Lenovo Thinkpad P52 (20mx) Firmware
Lenovo Thinkpad P53 (20qx) Firmware
Lenovo Thinkpad P53s (20nx) Firmware
NA
CVE-2011-0372
The CGI implementation on Cisco TelePresence endpoint devices with software 1.2.x up to and including 1.5.x allows remote malicious users to execute arbitrary commands via a malformed request, related to "command injection vulnerabilities," aka Bug ID CSCtb31640.
Cisco Telepresence System Software 1.2.3
Cisco Telepresence System Software 1.3.2
Cisco Telepresence System Software 1.4.7
Cisco Telepresence System Software 1.5.1
Cisco Telepresence System Software 1.5.3
Cisco Telepresence System Software 1.5.10
Cisco Telepresence System Software 1.5.11
Cisco Telepresence System Software 1.5.12
Cisco Telepresence System Software 1.5.13
Cisco Telepresence System 1000
Cisco Telepresence System 1100
Cisco Telepresence System 3000
Cisco Telepresence System 1300 Series
Cisco Telepresence System 3200 Series
Cisco Telepresence System 500 Series
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »