Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
authentication manager vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2009-4925
Multiple SQL injection vulnerabilities in Portale e-commerce Creasito (aka creasito e-commerce content manager) 1.3.16, when magic_quotes_gpc is disabled, allow remote malicious users to execute arbitrary SQL commands via the username parameter to (1) admin/checkuser.php and (2) ...
Creasito Creasito E-commerce Content Manager 1.3.16
1 EDB exploit
6.5
CVSSv2
CVE-2017-16603
This vulnerability allows remote malicious users to execute code by creating arbitrary files on vulnerable installations of NetGain Systems Enterprise Manager 7.2.730 build 1034. Although authentication is required to exploit this vulnerability, the existing authentication mechan...
Netgain-systems Enterprise Manager 7.2.730
7.5
CVSSv2
CVE-2015-1486
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote malicious users to bypass authentication via a crafted password-reset action that triggers a new administrative session.
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
5.5
CVSSv2
CVE-2015-1487
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to write to arbitrary files, and consequently obtain administrator privileges, via a crafted filename.
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
8.5
CVSSv2
CVE-2015-1489
The management console in Symantec Endpoint Protection Manager (SEPM) 12.1 prior to 12.1-RU6-MP1 allows remote authenticated users to gain privileges via unspecified vectors.
Symantec Endpoint Protection Manager 12.1.0
1 EDB exploit
7.5
CVSSv2
CVE-2006-5777
Creasito E-Commerce Content Manager 1.3.08 allows remote malicious users to bypass authentication and perform privileged functions via a non-empty finame parameter to (1) addnewcont.php, (2) adminpassw.php, (3) amministrazione.php, (4) artins.php, (5) bgcolor.php, (6) cancartcat....
Creasito Creasito E-commerce Content Manager
1 EDB exploit
6.8
CVSSv2
CVE-2009-3218
SQL injection vulnerability in control/login.php in AR Web Content Manager (AWCM) 2.1, when magic_quotes_gpc is disabled, allows remote malicious users to execute arbitrary SQL commands via the username parameter.
The-ghost Ar Web Content Manager 2.1
1 EDB exploit
6.8
CVSSv2
CVE-2009-3219
Directory traversal vulnerability in a.php in AR Web Content Manager (AWCM) 2.1, when magic_quotes_gpc is disabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the a parameter.
The-ghost Ar Web Content Manager 2.1
1 EDB exploit
5
CVSSv2
CVE-2016-8937
The IBM Tivoli Storage Manager (IBM Spectrum Protect 7.1 and 8.1) default authentication protocol is vulnerable to a brute force attack due to disclosing too much information during authentication. An attacker could gain user or administrative access to the TSM server. IBM X-Forc...
Ibm Tivoli Storage Manager 6.1.2
Ibm Tivoli Storage Manager 6.1.3
Ibm Tivoli Storage Manager 6.1.4
Ibm Tivoli Storage Manager 6.1.5
Ibm Tivoli Storage Manager 6.3.1
Ibm Tivoli Storage Manager 6.3.1.2
Ibm Tivoli Storage Manager 6.3.2.2
Ibm Tivoli Storage Manager 6.3.3
Ibm Tivoli Storage Manager 6.4.3.1
Ibm Tivoli Storage Manager 7.1
Ibm Tivoli Storage Manager 7.1..5.100
Ibm Tivoli Storage Manager 7.1.0.1
Ibm Tivoli Storage Manager 7.1.4
Ibm Tivoli Storage Manager 7.1.4.1
Ibm Tivoli Storage Manager 7.1.4.2
Ibm Tivoli Storage Manager 7.1.5
Ibm Tivoli Storage Manager 6.1.0
Ibm Tivoli Storage Manager 6.1.5.5
Ibm Tivoli Storage Manager 6.2.0
Ibm Tivoli Storage Manager 6.3
Ibm Tivoli Storage Manager 6.3.0.15
Ibm Tivoli Storage Manager 6.3.5
10
CVSSv2
CVE-2007-5057
NetSupport Manager Client prior to 10.20.0004 allows remote malicious users to bypass the (1) basic and (2) authentication schemes by spoofing the NetSupport Manager.
Netsupport Netsupport Manager Client 5.03
Netsupport Netsupport Manager Client 5.05
Netsupport Netsupport Manager Client 7.10
Netsupport Netsupport Manager Client 8.00
Netsupport Netsupport Manager Client 10.00
Netsupport Netsupport Manager Client 10.20
Netsupport Netsupport Manager Client 5.30
Netsupport Netsupport Manager Client 5.31
Netsupport Netsupport Manager Client 8.10
Netsupport Netsupport Manager Client 8.50
Netsupport Netsupport Manager Client 8.60
Netsupport Netsupport Manager Client 5.02
Netsupport Netsupport Manager Client 5.02 F1
Netsupport Netsupport Manager Client 6.11
Netsupport Netsupport Manager Client 7.01
Netsupport Netsupport Manager Client 9.50
Netsupport Netsupport Manager Client 9.60
Netsupport Netsupport Manager Client 5.00
Netsupport Netsupport Manager Client 5.01
Netsupport Netsupport Manager Client 6.00
Netsupport Netsupport Manager Client 6.10
Netsupport Netsupport Manager Client 9.00
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
XXE
CVE-2024-34490
SQL injection
CVE-2024-34488
CVE-2024-4507
CVE-2023-7028
CVE-2024-23187
TCP
CVE-2024-4439
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »