Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web console vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2002-1081
The Administration console for Abyss Web Server 1.0.3 allows remote malicious users to read files without providing login credentials via an HTTP request to a target file that ends in a "+" character.
Aprelium Technologies Abyss Web Server 1.0.3
Aprelium Technologies Abyss Web Server 1.0
7.5
CVSSv2
CVE-2002-1080
The Administration console for Abyss Web Server 1.0.3 before Patch 2 allows remote malicious users to gain privileges and modify server configuration via direct requests to CHL files such as (1) srvstatus.chl, (2) consport.chl, (3) general.chl, (4) srvparam.chl, and (5) advanced....
Aprelium Technologies Abyss Web Server 1.0
Aprelium Technologies Abyss Web Server 1.0.3
4.3
CVSSv2
CVE-2012-4580
Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, allows remote malicious users to inject arbitrary web script or HTML via vectors related to the McAf...
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0
Mcafee Email And Web Security 5.5
7.9
CVSSv2
CVE-2013-5017
SNMPConfig.php in the management console in Symantec Web Gateway (SWG) prior to 5.2.1 allows remote malicious users to execute arbitrary commands via unspecified vectors.
Symantec Web Gateway
6.8
CVSSv2
CVE-2012-4581
McAfee Email and Web Security (EWS) 5.x prior to 5.5 Patch 6 and 5.6 before Patch 3, and McAfee Email Gateway (MEG) 7.0 before Patch 1, does not disable the server-side session token upon the closing of the Management Console/Dashboard, which makes it easier for remote malicious ...
Mcafee Email And Web Security 5.6
Mcafee Email And Web Security 5.0
Mcafee Email And Web Security 5.5
Mcafee Email Gateway 7.0
5.2
CVSSv2
CVE-2014-1650
SQL injection vulnerability in user.php in the management console in Symantec Web Gateway (SWG) prior to 5.2.1 allows remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
7.9
CVSSv2
CVE-2015-5693
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to execute arbitrary commands via vectors related to "traffic capture."
Symantec Web Gateway
8.3
CVSSv2
CVE-2015-6547
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to execute arbitrary commands at boot time via unspecified vectors.
Symantec Web Gateway
6.5
CVSSv2
CVE-2013-5012
Multiple SQL injection vulnerabilities in the management console on the Symantec Web Gateway (SWG) appliance prior to 5.2 allow remote authenticated users to execute arbitrary SQL commands via unspecified vectors.
Symantec Web Gateway
8.5
CVSSv2
CVE-2015-5690
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands by leveraging a "redirect."
Symantec Web Gateway
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »