Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
management server vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2006-6388
Cross-site scripting (XSS) vulnerability in naprednaPretraga.php in LINK Content Management Server (CMS) allows remote malicious users to inject arbitrary web script or HTML via the txtPretraga parameter. NOTE: The provenance of this information is unknown; the details are obtain...
Link Content Management Server
2.1
CVSSv2
CVE-2019-18576
Dell EMC XtremIO XMS versions before 6.3.0 contain an information disclosure vulnerability where OS users’ passwords are logged in local files. Malicious local users with access to the log files may use the exposed passwords to gain access to XtremIO with the privileges of ...
Dell Xtremio Management Server
7.2
CVSSv2
CVE-2019-18577
Dell EMC XtremIO XMS versions before 6.3.0 contain an incorrect permission assignment vulnerability. A malicious local user with XtremIO xinstall privileges may exploit this vulnerability to gain root access.
Dell Xtremio Management Server
6
CVSSv2
CVE-2019-18578
Dell EMC XtremIO XMS versions before 6.3.0 contain a stored cross-site scripting vulnerability. A low-privileged malicious remote user of XtremIO may exploit this vulnerability to store malicious HTML or JavaScript code in application fields. When victim users access the injected...
Dell Xtremio Management Server
5
CVSSv2
CVE-2015-8148
The LDAP service in Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows remote malicious users to obtain sensitive information about administrator accounts via a modified request.
Symantec Encryption Management Server
6.3
CVSSv2
CVE-2015-8150
Symantec Encryption Management Server (SEMS) 3.3.2 before MP12 allows local users to obtain root access by modifying a batch file.
Symantec Encryption Management Server
5.5
CVSSv2
CVE-2020-25237
A vulnerability has been identified in SINEC NMS (All versions < V1.0 SP1 Update 1), SINEMA Server (All versions < V14.0 SP2 Update 2). When uploading files to an affected system using a zip container, the system does not correctly check if the relative file path of the ext...
Siemens Sinec Network Management System
Siemens Sinec Network Management System 1.0
Siemens Sinema Server
Siemens Sinema Server 14.0
6.4
CVSSv2
CVE-2012-3137
The authentication protocol in Oracle Database Server 10.2.0.3, 10.2.0.4, 10.2.0.5, 11.1.0.7, 11.2.0.2, and 11.2.0.3 allows remote malicious users to obtain the session key and salt for arbitrary users, which leaks information about the cryptographic hash and makes it easier to c...
Oracle Database Server 10.2.0.3
Oracle Database Server 10.2.0.4
Oracle Database Server 10.2.0.5
Oracle Database Server 11.1.0.7
Oracle Database Server 11.2.0.2
Oracle Database Server 11.2.0.3
Oracle Primavera P6 Enterprise Project Portfolio Management 8.4
Oracle Primavera P6 Enterprise Project Portfolio Management 8.2
Oracle Primavera P6 Enterprise Project Portfolio Management 8.3
1 EDB exploit
2 Nmap scripts
4 Github repositories
6.8
CVSSv2
CVE-2003-0002
Cross-site scripting vulnerability (XSS) in ManualLogin.asp script for Microsoft Content Management Server (MCMS) 2001 allows remote malicious users to execute arbitrary script via the REASONTXT parameter.
Microsoft Content Management Server 2001
1 EDB exploit
7.2
CVSSv2
CVE-2000-0100
The SMS Remote Control program is installed with insecure permissions, which allows local users to gain privileges by modifying or replacing the program.
Microsoft Systems Management Server 2.0
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4644
unprivileged
CVE-2024-3494
CVE-2024-22460
CVE-2024-26026
CVE-2024-23473
firewall
CVE-2024-28889
XML external entity
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »