Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anonymous vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-3405
Unchecked parameter value in M-Files Server in versions prior to 23.6.12695.3 (excluding 23.2 SR2 and newer) allows anonymous user to cause denial of service
M-files M-files Server
NA
CVE-2023-52620
In the Linux kernel, the following vulnerability has been resolved: netfilter: nf_tables: disallow timeout for anonymous sets Never used from userspace, disallow these parameters.
9.8
CVSSv3
CVE-2023-25344
An issue exists in swig-templates thru 2.0.4 and swig thru 1.4.2, allows malicious users to execute arbitrary code via crafted Object.prototype anonymous function.
Swig-templates Project Swig-templates
Swig Project Swig
NA
CVE-2013-6796
The SMTP server in DeepOfix 3.3 and previous versions allows remote malicious users to bypass authentication via an empty password, which triggers an LDAP anonymous bind.
Deeproot Linux Deepofix
1 EDB exploit
6.5
CVSSv3
CVE-2016-9729
IBM QRadar 7.2 does not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas. IBM Reference #: 1999545.
Ibm Qradar Security Information And Event Manager 7.2.8
Ibm Qradar Security Information And Event Manager 7.2.0
Ibm Qradar Security Information And Event Manager 7.2.7
Ibm Qradar Security Information And Event Manager 7.2.5
Ibm Qradar Security Information And Event Manager 7.2.6
Ibm Qradar Security Information And Event Manager 7.2.3
Ibm Qradar Security Information And Event Manager 7.2.4
Ibm Qradar Security Information And Event Manager 7.2.1
Ibm Qradar Security Information And Event Manager 7.2.2
9.8
CVSSv3
CVE-2020-26167
In FUEL CMS 11.4.12 and before, the page preview feature allows an anonymous user to take complete ownership of any account including an administrator one.
Thedaylightstudio Fuel Cms
NA
CVE-2001-1587
NWFTPD.nlm prior to 5.01w in the FTP server in Novell NetWare allows remote malicious users to cause a denial of service (abend) via an anonymous STOU command.
Novell Netware
6.1
CVSSv3
CVE-2018-10208
An issue exists in Vaultize Enterprise File Sharing 17.05.31. There is anonymous reflected XSS on the error page via a /share/error?message= URI.
Vaultize Enterprise File Sharing 17.05.31
7.5
CVSSv3
CVE-2021-22200
An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.6. Under a special condition it was possible to access data of an internal repository through a public project fork as an anonymous user.
Gitlab Gitlab
Gitlab Gitlab 13.10.0
7.5
CVSSv3
CVE-2023-1405
The Formidable Forms WordPress plugin prior to 6.2 unserializes user input, which could allow anonymous users to perform PHP Object Injection when a suitable gadget is present.
Strategy11 Formidable Forms
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »