Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
a vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-1070
Cross-site scripting (XSS) vulnerability in the API in Ubuntu Metal as a Service (MaaS) 1.2 and 1.4 allows remote malicious users to inject arbitrary web script or HTML via the op parameter to nodes/.
Ubuntu Metal As A Service 1.4
Ubuntu Metal As A Service 1.2
9.8
CVSSv3
CVE-2021-20776
Improper authentication vulnerability in SCT-40CM01SR and AT-40CM01SR allows an malicious user to bypass access restriction and execute an arbitrary command via telnet.
A-stage-inc At-40cm01sr Firmware -
A-stage-inc Sct-40cm01sr Firmware -
NA
CVE-2009-4988
Stack-based buffer overflow in NT_Naming_Service.exe in SAP Business One 2005 A 6.80.123 and 6.80.320 allows remote malicious users to execute arbitrary code via a long GIOP request to TCP port 30000.
Sap Business One 2005-a 6.80.320
Sap Business One 2005-a 6.80.123
2 EDB exploits
7.5
CVSSv3
CVE-2021-26406
Insufficient validation in parsing Owner's Certificate Authority (OCA) certificates in SEV (AMD Secure Encrypted Virtualization) and SEV-ES user application can lead to a host crash potentially resulting in denial of service.
Amd Epyc 7232p Firmware Romepi 1.0.0.a
Amd Epyc 7252 Firmware Romepi 1.0.0.a
Amd Epyc 7262 Firmware Romepi 1.0.0.a
Amd Epyc 7272 Firmware Romepi 1.0.0.a
Amd Epyc 7282 Firmware Romepi 1.0.0.a
Amd Epyc 7302 Firmware Romepi 1.0.0.a
Amd Epyc 7302p Firmware Romepi 1.0.0.a
Amd Epyc 7352 Firmware Romepi 1.0.0.a
Amd Epyc 7402 Firmware Romepi 1.0.0.a
Amd Epyc 7402p Firmware Romepi 1.0.0.a
Amd Epyc 7452 Firmware Romepi 1.0.0.a
Amd Epyc 7502 Firmware Romepi 1.0.0.a
Amd Epyc 7502p Firmware Romepi 1.0.0.a
Amd Epyc 7532 Firmware Romepi 1.0.0.a
Amd Epyc 7542 Firmware Romepi 1.0.0.a
Amd Epyc 7552 Firmware Romepi 1.0.0.a
Amd Epyc 7642 Firmware Romepi 1.0.0.a
Amd Epyc 7662 Firmware Romepi 1.0.0.a
Amd Epyc 7702 Firmware Romepi 1.0.0.a
Amd Epyc 7702p Firmware Romepi 1.0.0.a
Amd Epyc 7742 Firmware Romepi 1.0.0.a
Amd Epyc 7f32 Firmware Romepi 1.0.0.a
NA
CVE-2010-2965
The WDB target agent debug service in Wind River VxWorks 6.x, 5.x, and previous versions, as used on the Rockwell Automation 1756-ENBT series A with firmware 3.2.6 and 3.6.1 and other products, allows remote malicious users to read or modify arbitrary memory locations, perform fu...
Rockwellautomation 1756-enbt/a Firmware 3.2.6
Rockwellautomation 1756-enbt/a Firmware 3.6.1
Windriver Vxworks
1 Github repository
9.8
CVSSv3
CVE-2022-30518
ChatBot Application with a Suggestion Feature 1.0 exists to contain a SQL injection vulnerability via the id parameter at /simple_chat_bot/admin/responses/view_response.php.
Chatbot Application With A Suggestion Feature Project Chatbot Application With A Suggestion Feature 1.0
NA
CVE-2010-5026
SQL injection vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2.2.0 allows remote malicious users to execute arbitrary SQL commands via the type parameter. NOTE: some of these details are obtained from third party information.
Sfiab Science Fair In A Box 2.2.0
Sfiab Science Fair In A Box 2.0.6
1 EDB exploit
NA
CVE-2010-5027
Cross-site scripting (XSS) vulnerability in winners.php in Science Fair In A Box (SFIAB) 2.0.6 and 2.2.0 allows remote malicious users to inject arbitrary web script or HTML via the type parameter. NOTE: some of these details are obtained from third party information.
Sfiab Science Fair In A Box 2.2.0
Sfiab Science Fair In A Box 2.0.6
1 EDB exploit
7.5
CVSSv3
CVE-2022-28740
aEnrich eHRD Learning Management Key Performance Indicator System 5+ exposes Sensitive Information to an Unauthorized Actor.
Aenrich A+hrd
8.1
CVSSv3
CVE-2022-28741
aEnrich a+HRD 5.x Learning Management Key Performance Indicator System has a local file inclusion (LFI) vulnerability that occurs due to missing input validation in v5.x
Aenrich A+hrd
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »