Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
p1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3426
Directory traversal vulnerability in (a) PatchLink Update Server (PLUS) prior to 6.1 P1 and 6.2.x prior to 6.2 SR1 P1 and (b) Novell ZENworks 6.2 SR1 and previous versions allows remote malicious users to overwrite arbitrary files and directories via a .. (dot dot) sequence in th...
Lumension Patchlink Update Server 6.2.0.181
Lumension Patchlink Update Server 6.2.0.189
Novell Zenworks
Lumension Patchlink Update Server 6.1
NA
CVE-2013-4920
The P1 dissector in Wireshark 1.10.x prior to 1.10.1 does not properly initialize a global variable, which allows remote malicious users to cause a denial of service (application crash) via a crafted packet.
Wireshark Wireshark 1.10.0
7
CVSSv3
CVE-2022-41743
NGINX Plus prior to R27 P1 and R26 P1 have a vulnerability in the module ngx_http_hls_module that might allow a local malicious user to corrupt NGINX worker memory, resulting in its crash or potential other impact using a specially crafted audio or video file. The issue affects o...
F5 Nginx Plus
F5 Nginx Ingress Controller
NA
CVE-2010-4873
Cross-site scripting (XSS) vulnerability in confirm.php in WeBid 0.8.5 P1 allows remote malicious users to inject arbitrary web script or HTML via the id parameter.
Webidsupport Webid 0.8.5
1 EDB exploit
9.8
CVSSv3
CVE-2019-8144
A remote code execution vulnerability exists in Magento 2.3 before 2.3.3 or 2.3.2-p1. An unauthenticated user can insert a malicious payload through PageBuilder template methods.
Magento Magento
Magento Magento 2.3.2
NA
CVE-2023-30314
An issue discovered in 360 V6G, 360 T5G, 360 T6M, and 360 P1 routers allows malicious users to hijack TCP sessions which could lead to a denial of service.
5.3
CVSSv3
CVE-2019-8113
Magento 2.2 before 2.2.10, Magento 2.3 before 2.3.3 or 2.3.2-p1 uses cryptographically weak random number generator to brute-force the confirmation code for customer registration.
Magento Magento
Magento Magento 2.3.2
5.4
CVSSv3
CVE-2020-26693
A stored cross-site scripting (XSS) vulnerability exists in pfSense 2.4.5-p1 which allows an authenticated malicious user to execute arbitrary web scripts via exploitation of the load_balancer_monitor.php function.
Pfsense Pfsense 2.4.5
NA
CVE-2013-2494
libdns in ISC DHCP 4.2.x prior to 4.2.5-P1 allows remote name servers to cause a denial of service (memory consumption) via vectors involving a regular expression, as demonstrated by a memory-exhaustion attack against a machine running a dhcpd process, a related issue to CVE-2013...
Isc Dhcp 4.2.2
Isc Dhcp 4.2.0
Isc Dhcp 4.2.4
Isc Dhcp 4.2.1
Isc Dhcp 4.2.3
Isc Dhcp 4.2.5
6.1
CVSSv3
CVE-2019-8233
In Magento 2.2 before 2.2.10, Magento 2.3 before 2.3.3 or 2.3.2-p1, an unauthenticated user can inject arbitrary JavaScript code as a result of the sanitization engine ignoring HTML comments.
Magento Magento
Magento Magento 2.3.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »