Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
file file 4.1 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-4499
Unrestricted file upload vulnerability in output.php in American Financing eMail Image Upload 4.1 allows remote malicious users to upload and execute arbitrary code via unspecified vectors. NOTE: the provenance of this information is unknown; the details are obtained solely from ...
American Financing Email Image Upload 4.1
NA
CVE-2002-0487
Intellisol Xpede 4.1 stores passwords in plaintext in a Javascript "session timeout" re-authentication capability, which could allow local users with access to gain privileges of other Xpede users by reading the password from the source file, e.g. from the browser'...
Workforceroi Xpede 4.1
Workforceroi Xpede 7.0
5.3
CVSSv3
CVE-2022-30625
Directory listing is a web server function that displays the directory contents when there is no index file in a specific website directory. A directory listing provides an attacker with the complete index of all the resources located inside of the directory. The specific risks a...
Chcnav P5e Gnss Firmware 4.2
Chcnav P5e Gnss Firmware 4.1
NA
CVE-2014-5428
Unrestricted file upload vulnerability in unspecified web services in Johnson Controls Metasys 4.1 up to and including 6.5, as used in Application and Data Server (ADS), Extended Application and Data Server (aka ADX), LonWorks Control Server 85 LCS8520, Network Automation Engine ...
Johnsoncontrols Metsys 4.1
Johnsoncontrols Metsys 6.5
NA
CVE-2006-0255
Unquoted Windows search path vulnerability in Check Point VPN-1 SecureClient might allow local users to gain privileges via a malicious "program.exe" file in the C: folder, which is run when SecureClient attempts to launch the Sr_GUI.exe program.
Checkpoint Vpn-1
Checkpoint Vpn-1 4.1
7.5
CVSSv3
CVE-2016-5754
Presence of a .htaccess file could leak information in NetIQ Access Manager 4.1 prior to 4.1.2 Hot Fix 1 and 4.2 before SP2.
Netiq Access Manager 4.1
Netiq Access Manager 4.2
7.2
CVSSv3
CVE-2019-1889
A vulnerability in the REST API for software device management in Cisco Application Policy Infrastructure Controller (APIC) Software could allow an authenticated, remote malicious user to escalate privileges to root on an affected device. The vulnerability is due to incomplete va...
Cisco Application Policy Infrastructure Controller 4.1\\(1j\\)
NA
CVE-2012-0315
Untrusted search path vulnerability in ALFTP prior to 5.31 allows local users to gain privileges via a Trojan horse executable file in a directory that is accessed for reading an extensionless file, as demonstrated by executing the README.exe file when a user attempts to access t...
Estsoft Alftp
Estsoft Alftp 4.1
Estsoft Alftp 5.0
Estsoft Alftp 5.1
NA
CVE-2002-0435
Race condition in the recursive (1) directory deletion and (2) directory move in GNU File Utilities (fileutils) 4.1 and previous versions allows local users to delete directories as the user running fileutils by moving a low-level directory to a higher level as it is being delete...
Gnu Fileutils 4.0
Gnu Fileutils 4.1.6
Gnu Fileutils 4.1
5.5
CVSSv3
CVE-2016-5749
NetIQ Access Manager 4.1 prior to 4.1.2 HF 1 and 4.2 prior to 4.2.2 was parsing incoming SAML requests with external entity resolution enabled, which could lead to local file disclosure via an XML External Entity (XXE) attack.
Netiq Access Manager 4.1
Netiq Access Manager 4.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
privilege escalation
CVE-2024-20696
CVE-2024-29829
CVE-2024-33999
CVE-2024-35646
physical
CVE-2024-24919
CVE-2024-31030
local users
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »