Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webadmin vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2012-5941
Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject content, and conduct phishing attacks, via unspecified vectors.
Ibm Netezza 6.0.5
Ibm Netezza 6.0.8
Ibm Netezza 7.0
7.8
CVSSv2
CVE-2008-4243
Directory traversal vulnerability in ImageServer (aka UTImageServer) in WebAdmin prior to 1.7 for Epic Games Unreal Tournament 3 (UT3) 1.3 allows remote malicious users to read arbitrary files via a .. (dot dot) in the URI.
Epic Games Unreal Tournament 3 1.3
1 EDB exploit
5
CVSSv2
CVE-2014-9610
Netsweeper prior to 3.1.10, 4.0.x prior to 4.0.9, and 4.1.x prior to 4.1.2 allows remote malicious users to bypass authentication and remove IP addresses from the quarantine via the ip parameter to webadmin/user/quarantine_disable.php.
Netsweeper Netsweeper 4.1.0
Netsweeper Netsweeper 4.0.4
Netsweeper Netsweeper 4.0.2
Netsweeper Netsweeper 4.0.0
Netsweeper Netsweeper
Netsweeper Netsweeper 4.1.1
Netsweeper Netsweeper 4.0.3
Netsweeper Netsweeper 4.0.1
Netsweeper Netsweeper 4.0.8
Netsweeper Netsweeper 4.0.7
Netsweeper Netsweeper 4.0.6
Netsweeper Netsweeper 4.0.5
1 EDB exploit
6.5
CVSSv2
CVE-2009-0759
Multiple CRLF injection vulnerabilities in webadmin in ZNC prior to 0.066 allow remote authenticated users to modify the znc.conf configuration file and gain privileges via CRLF sequences in the quit message and other vectors.
Znc Znc 0.056
Znc Znc 0.058
Znc Znc
4.3
CVSSv2
CVE-2012-3238
Cross-site scripting (XSS) vulnerability in the Backup/Restore component in WebAdmin in Astaro Security Gateway prior to 8.305 allows remote malicious users to inject arbitrary web script or HTML via the "Comment (optional)" field.
Astaro Security Gateway Software
Astaro Security Gateway
Sophos Unified Threat Management Software
Sophos Unified Threat Management 120
Sophos Unified Threat Management 320
Sophos Unified Threat Management 525
Sophos Unified Threat Management 110
Sophos Unified Threat Management 625
Sophos Unified Threat Management 220
Sophos Unified Threat Management 425
10
CVSSv2
CVE-2007-6453
Directory traversal vulnerability in raidenhttpd-admin/workspace.php in RaidenHTTPD 2.0.19, when the WebAdmin function is enabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the ulang parameter.
Raiden Professional Servers Raidenhttpd 2.0.19
1 EDB exploit
5.1
CVSSv2
CVE-2006-4723
PHP remote file inclusion vulnerability in raidenhttpd-admin/slice/check.php in RaidenHTTPD 1.1.49, when register_globals and WebAdmin is enabled, allows remote malicious users to execute arbitrary PHP code via a URL in the SoftParserFileXml parameter.
Raidenhttpd Raidenhttpd 1.1.32
Raidenhttpd Raidenhttpd 1.1.47
Raidenhttpd Raidenhttpd
1 EDB exploit
4.3
CVSSv2
CVE-2014-9608
Cross-site scripting (XSS) vulnerability in webadmin/policy/group_table_ajax.php/ in Netsweeper prior to 3.1.10, 4.0.x prior to 4.0.9, and 4.1.x prior to 4.1.2 allows remote malicious users to inject arbitrary web script or HTML via the PATH_INFO.
Netsweeper Netsweeper
3.5
CVSSv2
CVE-2012-5762
Cross-site scripting (XSS) vulnerability in the WebAdmin application 6.0.5, 6.0.8, and 7.0 before P2 in IBM Netezza allows remote authenticated users to inject arbitrary web script or HTML via vectors involving the MHTML protocol.
Ibm Netezza 6.0.8
Ibm Netezza 7.0
Ibm Netezza 6.0.5
4.3
CVSSv2
CVE-2021-43574
WebAdmin Control Panel in Atmail 6.5.0 (a version released in 2012) allows XSS via the format parameter to the default URI. NOTE: This vulnerability only affects products that are no longer supported by the maintainer
Atmail Atmail 6.5.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »