Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gui vulnerabilities and exploits
(subscribe to this query)
409
VMScore
CVE-2018-0417
A vulnerability in TACACS authentication with Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local malicious user to perform certain operations within the GUI that are not normally available to that user on the CLI. The vulnerability is due to incorrec...
Cisco Wireless Lan Controller Software 8.7\\(1.115\\)
Cisco Wireless Lan Controller Software
Cisco Wireless Lan Controller
435
VMScore
CVE-2010-0706
Cross-site scripting (XSS) vulnerability in the login/prompt component in Subex Nikira Fraud Management System allows remote malicious users to inject arbitrary web script or HTML via the message parameter.
Subexworld Nikira Fraud Management System
1 EDB exploit
570
VMScore
CVE-2018-6374
The GUI component (aka PulseUI) in Pulse Secure Desktop Linux clients before PULSE5.2R9.2 and 5.3.x before PULSE5.3R4.2 does not perform strict SSL Certificate Validation. This can lead to the manipulation of the Pulse Connection set.
Pulsesecure Desktop Linux Client
543
VMScore
CVE-2020-3577
A vulnerability in the ingress packet processing path of Cisco Firepower Threat Defense (FTD) Software for interfaces that are configured either as Inline Pair or in Passive mode could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition....
Cisco Firepower Threat Defense
605
VMScore
CVE-2018-0248
A vulnerability in the administrative GUI configuration feature of Cisco Wireless LAN Controller (WLC) Software could allow an aUTHENTICated, remote malicious user to cause the device to reload unexpectedly during device configuration when the administrator is using this GUI, cau...
Cisco Wireless Lan Controller Software
356
VMScore
CVE-2015-6344
The web-based GUI in Cisco Adaptive Security Appliance (ASA) CX Context-Aware Security 9.3(4.1.11) allows remote authenticated users to bypass intended access restrictions and obtain sensitive user information via an unspecified HTTP request, aka Bug ID CSCuv74105.
Cisco Asa Cx Context-aware Security Software 9.3.4.1.11
694
VMScore
CVE-2013-5537
The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS sessions, which allows remote malicious users to cause a denial of service (manage...
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Email Security Appliance Firmware -
516
VMScore
CVE-2018-13054
An issue exists in Cinnamon 1.9.2 up to and including 3.8.6. The cinnamon-settings-users.py GUI runs as root and allows configuration of (for example) other users' icon files in _on_face_browse_menuitem_activated and _on_face_menuitem_activated. These icon files are written ...
Debian Debian Linux 8.0
Linuxmint Cinnamon
641
VMScore
CVE-2018-0141
A vulnerability in Cisco Prime Collaboration Provisioning (PCP) Software 11.6 could allow an unauthenticated, local malicious user to log in to the underlying Linux operating system. The vulnerability is due to a hard-coded account password on the system. An attacker could exploi...
Cisco Prime Collaboration Provisioning 11.6
Cisco Prime Collaboration 11.6
Cisco Prime Collaboration Assurance 11.6
1 Article
768
VMScore
CVE-2019-2725
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: Web Services). Supported versions that are affected are 10.3.6.0.0 and 12.1.3.0.0. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to com...
Oracle Weblogic Server 12.1.3.0.0
Oracle Peoplesoft Enterprise Peopletools 8.56
Oracle Weblogic Server 10.3.6.0.0
Oracle Peoplesoft Enterprise Peopletools 8.57
Oracle Agile Plm 9.3.3
Oracle Agile Plm 9.3.4
Oracle Agile Plm 9.3.5
Oracle Vm Virtualbox
Oracle Communications Converged Application Server 5.1
Oracle Communications Converged Application Server 7.0
Oracle Communications Converged Application Server 7.1
Oracle Peoplesoft Enterprise Peopletools 8.58
Oracle Storagetek Tape Analytics Sw Tool 2.3
Oracle Tape Library Acsls 8.5
Oracle Tape Virtual Storage Manager Gui 6.2
Oracle Vm Virtualbox 5.2.36
2 EDB exploits
27 Github repositories
4 Articles
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »