Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
next vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2021-21626
Jenkins Warnings Next Generation Plugin 8.4.4 and previous versions does not perform a permission check in methods implementing form validation, allowing attackers with Item/Read permission but without Item/Workspace or Item/Configure permission to check whether attacker-specifie...
Jenkins Warnings Next Generation
4.8
CVSSv3
CVE-2018-1731
IBM DOORS Next Generation (DNG/RRC) 5.0 up to and including 5.0.3 and 6.0 up to and including 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading...
Ibm Doors Next Generation
8.8
CVSSv3
CVE-2019-1003008
A cross-site request forgery vulnerability exists in Jenkins Warnings Next Generation Plugin 2.1.1 and previous versions in src/main/java/io/jenkins/plugins/analysis/warnings/groovy/GroovyParser.java that allows malicious users to execute arbitrary code via a form validation HTTP...
Jenkins Warnings Next Generation
6.1
CVSSv3
CVE-2019-1003023
A cross-site scripting vulnerability exists in Jenkins Warnings Next Generation Plugin 1.0.1 and previous versions in src/main/java/io/jenkins/plugins/analysis/core/model/DetailsTableModel.java, src/main/java/io/jenkins/plugins/analysis/core/model/SourceDetail.java, src/main/java...
Jenkins Warnings Next Generation
9.1
CVSSv3
CVE-2019-6143
Forcepoint Next Generation Firewall (Forcepoint NGFW) 6.4.x prior to 6.4.7, 6.5.x prior to 6.5.4, and 6.6.x prior to 6.6.2 has a serious authentication vulnerability that potentially allows unauthorized users to bypass password authentication and access services protected by the ...
Forcepoint Next Generation Firewall
5.4
CVSSv3
CVE-2018-1913
IBM DOORS Next Generation (DNG/RRC) 5.0 up to and including 5.0.3 and 6.0 up to and including 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading...
Ibm Doors Next Generation
NA
CVE-2015-0121
IBM Rational Requirements Composer 3.0 up to and including 3.0.1.6 and 4.0 up to and including 4.0.7 and Rational DOORS Next Generation (RDNG) 4.0 up to and including 4.0.7 and 5.0 up to and including 5.0.2, when LTPA single sign on is used with WebSphere Application Server, do n...
Ibm Rational Requirements Composer 3.0
Ibm Rational Requirements Composer 3.0.1
Ibm Rational Requirements Composer 3.0.1.1
Ibm Rational Requirements Composer 3.0.1.2
Ibm Rational Requirements Composer 4.0.0.1
Ibm Rational Requirements Composer 4.0.0.2
Ibm Rational Requirements Composer 4.0.1
Ibm Rational Requirements Composer 3.0.1.5
Ibm Rational Requirements Composer 3.0.1.6
Ibm Rational Requirements Composer 4.0.4
Ibm Rational Requirements Composer 4.0.5
Ibm Rational Requirements Composer 4.0
Ibm Rational Requirements Composer 4.0.0
Ibm Rational Requirements Composer 4.0.6
Ibm Rational Requirements Composer 4.0.7
Ibm Rational Requirements Composer 3.0.1.3
Ibm Rational Requirements Composer 3.0.1.4
Ibm Rational Requirements Composer 4.0.2
Ibm Rational Requirements Composer 4.0.3
Ibm Rational Doors Next Generation 4.0.0
Ibm Rational Doors Next Generation 4.0.7
Ibm Rational Doors Next Generation 5.0
6.1
CVSSv3
CVE-2024-24558
TanStack Query supplies asynchronous state management, server-state utilities and data fetching for the web. The `@tanstack/react-query-next-experimental` NPM package is vulnerable to a cross-site scripting vulnerability. To exploit this, an attacker would need to either inject m...
Tanstack React-query-next-experimental
6.1
CVSSv3
CVE-2023-2521
A vulnerability was found in NEXTU NEXT-7004N 3.0.1. It has been classified as problematic. Affected is an unknown function of the file /boafrm/formFilter of the component POST Request Handler. The manipulation of the argument url with the input <svg onload=alert(1337)> lea...
Ez-net Next-7004n Firmware 3.0.1
4.3
CVSSv3
CVE-2019-10326
A cross-site request forgery vulnerability in Jenkins Warnings NG Plugin 5.0.0 and previous versions allowed malicious users to reset warning counts for future builds.
Jenkins Warnings Next Generation 5.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »