Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rafael pedrero vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2018-19820
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/Roles.jsp" has reflected XSS via the ConnPoolName parameter.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19821
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SecurityPolicies.jsp" has reflected XSS via the ConnPoolName parameter.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19822
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "/VPortal/mgtconsole/SharedCriteria.jsp" has reflected XSS via the ConnPoolName or GroupId parameter.
Infovista Vistaportal 5.1
9.8
CVSSv3
CVE-2018-19861
Buffer overflow in MiniShare 1.4.1 and previous versions allows remote malicious users to execute arbitrary code via a long HTTP HEAD request. NOTE: this product is discontinued.
Minishare Project Minishare
9.8
CVSSv3
CVE-2018-19862
Buffer overflow in MiniShare 1.4.1 and previous versions allows remote malicious users to execute arbitrary code via a long HTTP POST request. NOTE: this product is discontinued.
Minishare Project Minishare
8.8
CVSSv3
CVE-2018-20193
Certain Secure Access SA Series SSL VPN products (originally developed by Juniper Networks but now sold and supported by Pulse Secure, LLC) allow privilege escalation, as demonstrated by Secure Access SSL VPN SA-4000 5.1R5 (build 9627) 4.2 Release (build 7631). This occurs becaus...
Pulsesecure Secure Access Series Ssl Vpn Sa-4000 4.2
Pulsesecure Secure Access Series Ssl Vpn Sa-4000 5.1r5
6.1
CVSSv3
CVE-2019-9206
PRTG Network Monitor v7.1.3.3378 allows XSS via the /public/login.htm errormsg or loginurl parameter. NOTE: This product is discontinued.
Paessler Prtg Network Monitor 7.1.3.3378
6.1
CVSSv3
CVE-2019-9207
PRTG Network Monitor v7.1.3.3378 allows XSS via the /search.htm searchtext parameter. NOTE: This product is discontinued.
Paessler Prtg Network Monitor 7.1.3.3378
6.1
CVSSv3
CVE-2019-7418
XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in "/sws/swsAlert.sws" in multiple parameters: flag, frame, func, and Nfunc.
Samsung Syncthru Web Service -
Samsung X7400gx Firmware 6.a6.25
6.1
CVSSv3
CVE-2019-7421
XSS exists in SAMSUNG X7400GX SyncThru Web Service V6.A6.25 V11.01.05.25_08-21-2015 in "/sws.login/gnb/loginView.sws" in multiple parameters: contextpath and basedURL.
Samsung Syncthru Web Service -
Samsung X7400gx Firmware 6.a6.25
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »