Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
project server vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2019-15600
A Path traversal exists in http_server which allows an malicious user to read arbitrary system files.
Http Server Project Http Server 1.0.12
383
VMScore
CVE-2020-18102
Cross Site Scripting (XSS) in Hotels_Server v1.0 allows remote malicious users to execute arbitrary code by injecting crafted commands the data fields in the component "/controller/publishHotel.php".
Hotels Server Project Hotels Server 1.0
580
VMScore
CVE-2021-28476
Windows Hyper-V Remote Code Execution Vulnerability
Microsoft Windows 10 -
Microsoft Windows Server 2008 R2
Microsoft Windows Server 2012 R2
Microsoft Windows Server 2016 -
Microsoft Windows 10 1607
Microsoft Windows 7 -
Microsoft Windows Server 2012 -
Microsoft Windows Server 2008 -
Microsoft Windows 8.1 -
Microsoft Windows 10 1803
Microsoft Windows Server 2019 -
Microsoft Windows 10 1809
Microsoft Windows Server 2016 1909
Microsoft Windows 10 1909
Microsoft Windows Server 2016 2004
Microsoft Windows 10 2004
Microsoft Windows Server 2016 20h2
Microsoft Windows 10 20h2
5 Github repositories
1 Article
668
VMScore
CVE-2022-27240
scheme/webauthn.c in Glewlwyd SSO server 2.x prior to 2.6.2 has a buffer overflow associated with a webauthn assertion.
Glewlwyd Sso Server Project Glewlwyd Sso Server
NA
CVE-2022-25895
All versions of package lite-dev-server are vulnerable to Directory Traversal due to missing input sanitization and sandboxes being employed to the req.url user input that is passed to the server code.
Lite-dev-server Project Lite-dev-server -
668
VMScore
CVE-2021-23797
All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is.
Http-server-node Project Http-server-node
605
VMScore
CVE-2016-10914
The add-from-server plugin prior to 3.3.2 for WordPress has CSRF for importing a large file.
Add From Server Project Add From Server
668
VMScore
CVE-2019-12567
Stack-based overflow vulnerability in the logMess function in Open TFTP Server MT 1.65 and previous versions allows remote malicious users to perform a denial of service or execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2018-10387 and CVE-...
Open Tftp Server Project Open Tftp Server
NA
CVE-2023-26104
All versions of the package lite-web-server are vulnerable to Denial of Service (DoS) when an attacker sends an HTTP request and includes control characters that the decodeURI() function is unable to parse.
Lite-web-server Project Lite-web-server -
383
VMScore
CVE-2014-3148
Cross-site scripting (XSS) vulnerability in libahttp/err.c in OkCupid OKWS (OK Web Server) allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO to a non-existent page, which is not properly handled in a 404 error page.
Ok Web Server Project Ok Web Server -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »