Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webaccess vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-3818
Cross-site scripting (XSS) vulnerability in the login page in Novell GroupWise WebAccess 6.5 prior to 20060721 and WebAccess 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via the GWAP.version parameter.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
NA
CVE-2006-3817
Cross-site scripting (XSS) vulnerability in Novell GroupWise WebAccess 6.5 and 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via an encoded SCRIPT element in an e-mail message with the UTF-7 character set, as demonstrated by the "+A...
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
7.5
CVSSv3
CVE-2017-16736
An Unrestricted Upload Of File With Dangerous Type issue exists in Advantech WebAccess versions before 8.3. WebAccess allows a remote malicious user to upload arbitrary files.
Advantech Webaccess
7.5
CVSSv3
CVE-2016-0853
Advantech WebAccess prior to 8.1 allows remote malicious users to obtain sensitive information via crafted input.
Advantech Webaccess
7.5
CVSSv3
CVE-2016-0855
Directory traversal vulnerability in Advantech WebAccess prior to 8.1 allows remote malicious users to list arbitrary virtual-directory files via unspecified vectors.
Advantech Webaccess
8.1
CVSSv3
CVE-2015-6467
Advantech WebAccess prior to 8.1 allows remote malicious users to execute arbitrary code via vectors involving a browser plugin.
Advantech Webaccess
7.8
CVSSv3
CVE-2018-14828
Advantech WebAccess 8.3.1 and previous versions has an improper privilege management vulnerability, which may allow an malicious user to access those files and perform actions at a system administrator level.
Advantech Webaccess
NA
CVE-2014-9208
Multiple stack-based buffer overflows in unspecified DLL files in Advantech WebAccess prior to 8.0.1 allow remote malicious users to execute arbitrary code via unknown vectors.
Advantech Webaccess
1 EDB exploit
9.8
CVSSv3
CVE-2021-33023
Advantech WebAccess versions 9.02 and prior are vulnerable to a heap-based buffer overflow, which may allow an malicious user to remotely execute code.
Advantech Webaccess
6.1
CVSSv3
CVE-2018-15703
Advantech WebAccess 8.3.2 and below is vulnerable to multiple reflected cross site scripting vulnerabilities. A remote unauthenticated attacker could potentially exploit this vulnerability by tricking a victim to supply malicious HTML or JavaScript code to WebAccess, which is the...
Advantech Webaccess
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »