Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerability-lab vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2017-13754
Cross-site scripting (XSS) vulnerability in the "advanced settings - time server" module in Wibu-Systems CodeMeter prior to 6.50b allows remote malicious users to inject arbitrary web script or HTML via the "server name" field in actions/ChangeConfiguration.ht...
Wibu Codemeter
1 EDB exploit
6.1
CVSSv3
CVE-2017-15374
Shopware v5.2.5 - v5.3 is vulnerable to cross site scripting in the customer and order section of the content management system backend modules. Remote attackers are able to inject malicious script code into the firstname, lastname, or order input fields to provoke persistent exe...
Shopware Shopware 5.2.22
Shopware Shopware 5.2.21
Shopware Shopware 5.2.13
Shopware Shopware 5.2.12
Shopware Shopware 5.2.5
Shopware Shopware 5.3.0
Shopware Shopware 5.2.27
Shopware Shopware 5.2.20
Shopware Shopware 5.2.19
Shopware Shopware 5.2.18
Shopware Shopware 5.2.11
Shopware Shopware 5.2.10
Shopware Shopware 5.2.26
Shopware Shopware 5.2.25
Shopware Shopware 5.2.17
Shopware Shopware 5.2.16
Shopware Shopware 5.2.9
Shopware Shopware 5.2.8
Shopware Shopware 5.2.24
Shopware Shopware 5.2.23
Shopware Shopware 5.2.15
Shopware Shopware 5.2.14
1 EDB exploit
6.1
CVSSv3
CVE-2016-7851
Adobe Connect version 9.5.6 and previous versions does not adequately validate input in the events registration module. This vulnerability could be exploited in cross-site scripting attacks.
Adobe Connect
1 EDB exploit
7.5
CVSSv3
CVE-2016-0956
The Servlets Post component 2.3.6 in Apache Sling, as used in Adobe Experience Manager 5.6.1, 6.0.0, and 6.1.0, allows remote malicious users to obtain sensitive information via unspecified vectors.
Apache Sling
Adobe Experience Manager 6.1.0
Adobe Experience Manager 6.0.0
Adobe Experience Manager 5.6.1
1 EDB exploit
3 Github repositories
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6