Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
project server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-4496
Easy Chat Server, in its 3.1 version and before, does not sufficiently encrypt user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability stored via /body2.ghp (POST method), in the mtowho parameter.
Easy Chat Server Project Easy Chat Server
NA
CVE-2023-4497
Easy Chat Server, in its 3.1 version and before, does not sufficiently encrypt user-controlled inputs, resulting in a Cross-Site Scripting (XSS) vulnerability stored via /registresult.htm (POST method), in the Icon parameter. The XSS is loaded from /users.ghp.
Easy Chat Server Project Easy Chat Server
668
VMScore
CVE-2022-27240
scheme/webauthn.c in Glewlwyd SSO server 2.x prior to 2.6.2 has a buffer overflow associated with a webauthn assertion.
Glewlwyd Sso Server Project Glewlwyd Sso Server
668
VMScore
CVE-2020-35308
CONQUEST DICOM SERVER prior to 1.5.0 has a code execution vulnerability which can be exploited by malicious users to execute malicious code.
Conquest Dicom Server Project Conquest Dicom Server
446
VMScore
CVE-2020-35857
An issue exists in the trust-dns-server crate prior to 0.18.1 for Rust. DNS MX and SRV null targets are mishandled, causing stack consumption.
Trust-dns-server Project Trust-dns-server
668
VMScore
CVE-2018-10387
Heap-based overflow vulnerability in TFTP Server SP 1.66 and previous versions allows remote malicious users to perform a denial of service or possibly execute arbitrary code via a long TFTP error packet, a different vulnerability than CVE-2008-2161.
Open Tftp Server Project Open Tftp Server
445
VMScore
CVE-2017-16124
node-server-forfront is a simple static file server. node-server-forfront is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Node-server-forfront Project Node-server-forfront
445
VMScore
CVE-2017-16210
jn_jj_server is a static file server. jn_jj_server is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Jn Jj Server Project Jn Jj Server
668
VMScore
CVE-2021-23797
All versions of package http-server-node are vulnerable to Directory Traversal via use of --path-as-is.
Http-server-node Project Http-server-node
445
VMScore
CVE-2017-16036
`badjs-sourcemap-server` receives files sent by `badjs-sourcemap`. `badjs-sourcemap-server` is vulnerable to a directory traversal issue, giving an attacker access to the filesystem by placing "../" in the url.
Badjs-sourcemap-server Project Badjs-sourcemap-server
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
camera
bypass
CVE-2024-3592
CVE-2024-37383
CVE-2024-24919
CVE-2024-27822
CVE-2024-36788
CVE-2024-36789
man-in-the-middle
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »