Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
sec-consult.com vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-31201
SoftGuard Web (SGW) prior to 5.1.5 allows HTML injection.
Monitoringsoft Softguard Web
NA
CVE-2022-31202
The export function in SoftGuard Web (SGW) prior to 5.1.5 allows directory traversal to read an arbitrary local file via export or man.tcl.
Monitoringsoft Softguard Web
2.1
CVSSv2
CVE-2014-9645
The add_probe function in modutils/modprobe.c in BusyBox prior to 1.23.0 allows local users to bypass intended restrictions on loading kernel modules via a / (slash) character in a module name, as demonstrated by an "ifconfig /usbserial up" command or a "mount -t /...
Busybox Busybox
6.5
CVSSv2
CVE-2021-36359
OrbiTeam BSCW Classic prior to 7.4.3 allows exportpdf authenticated remote code execution (RCE) via XML tag injection because reportlab\platypus\paraparser.py (reached via bscw.cgi op=_editfolder.EditFolder) calls eval on attacker-supplied Python code. This is fixed in 5.0.12, 5....
Bscw Bscw Classic
NA
CVE-2023-49114
A DLL hijacking vulnerability was identified in the Qognify VMS Client Viewer version 7.1 or higher, which allows local users to execute arbitrary code and obtain higher privileges via careful placement of a malicious DLL, if some specific pre-conditions are met.
7.5
CVSSv2
CVE-2021-34427
In Eclipse BIRT versions 4.8.0 and previous versions, an attacker can use query parameters to create a JSP file which is accessible from remote (current BIRT viewer dir) to inject JSP code into the running instance.
Eclipse Business Intelligence And Reporting Tools
4
CVSSv2
CVE-2019-19229
admincgi-bin/service.fcgi on Fronius Solar Inverter devices prior to 3.14.1 (HM 1.12.1) allows action=download&filename= Directory Traversal.
Fronius Datamanager Box 2.0 Firmware
Fronius Eco 25.0-3-s Firmware
Fronius Eco 27.0-3-s Firmware
Fronius Galvo 1.5-1 Firmware
Fronius Galvo 1.5-1 208-240 Firmware
Fronius Galvo 2.0-1 Firmware
Fronius Galvo 2.0-1 208-240 Firmware
Fronius Galvo 2.5-1 Firmware
Fronius Galvo 2.5-1 208-240 Firmware
Fronius Galvo 3.0-1 Firmware
Fronius Galvo 3.1-1 Firmware
Fronius Galvo 3.1-1 208-240 Firmware
Fronius Primo 10.0-1 208-240 Firmware
Fronius Primo 11.4-1 208-240 Firmware
Fronius Primo 12.5-1 208-240 Firmware
Fronius Primo 15.0-1 208-240 Firmware
Fronius Primo 3.0-1 Firmware
Fronius Primo 3.5-1 Firmware
Fronius Primo 3.6-1 Firmware
Fronius Primo 3.8-1 208-240 Firmware
Fronius Primo 4.0-1 Firmware
Fronius Primo 4.6-1 Firmware
6
CVSSv2
CVE-2017-6662
A vulnerability in the web-based user interface of Cisco Prime Infrastructure (PI) and Evolved Programmable Network Manager (EPNM) could allow an authenticated, remote attacker read and write access to information stored in the affected system as well as perform remote code execu...
Cisco Evolved Programmable Network Manager 1.2.0
Cisco Evolved Programmable Network Manager 1.2.300
Cisco Evolved Programmable Network Manager 2.0.0
Cisco Prime Infrastructure 3.1
Cisco Evolved Programmable Network Manager 1.2.200
Cisco Prime Infrastructure 1.4.1
Cisco Prime Infrastructure 1.3.0.20
Cisco Prime Infrastructure 1.2.1
Cisco Prime Infrastructure 1.4.0.45
Cisco Prime Infrastructure 3.1\\(0.128\\)
Cisco Prime Infrastructure 3.2\\(0.0\\)
Cisco Prime Infrastructure 3.1\\(4.0\\)
Cisco Prime Infrastructure 2.2
Cisco Prime Infrastructure 1.2
Cisco Prime Infrastructure 2.2\\(2\\)
Cisco Prime Infrastructure 1.4.2
Cisco Prime Infrastructure 1.2.0.103
Cisco Prime Infrastructure 3.1.1
Cisco Prime Infrastructure 2.2\\(3\\)
Cisco Prime Infrastructure 3.0
Cisco Evolved Programmable Network Manager 2.0\\(4.0.45d\\)
Cisco Evolved Programmable Network Manager 1.2.500
7.5
CVSSv2
CVE-2012-3000
Multiple SQL injection vulnerabilities in sam/admin/reports/php/saveSettings.php in the (1) APM WebGUI in F5 BIG-IP LTM, GTM, ASM, Link Controller, PSM, APM, Edge Gateway, and Analytics and (2) AVR WebGUI in WebAccelerator and WOM 11.2.x prior to 11.2.0-HF3 and 11.2.x prior to 11...
F5 Big-ip Webaccelerator 11.2.0
F5 Big-ip Webaccelerator 11.2.1
F5 Big-ip Webaccelerator 11.0.0
F5 Big-ip Webaccelerator 11.1.0
F5 Big-ip Global Traffic Manager 11.1.0
F5 Big-ip Global Traffic Manager 11.0.0
F5 Big-ip Global Traffic Manager 11.2.1
F5 Big-ip Global Traffic Manager 11.2.0
F5 Big-ip Local Traffic Manager 11.1.0
F5 Big-ip Local Traffic Manager 11.0.0
F5 Big-ip Local Traffic Manager 11.2.0
F5 Big-ip Local Traffic Manager 11.2.1
F5 Big-ip Protocol Security Module 11.0.0
F5 Big-ip Protocol Security Module 11.1.0
F5 Big-ip Protocol Security Module 11.2.0
F5 Big-ip Protocol Security Module 11.2.1
F5 Big-ip Wan Optimization Manager 11.0.0
F5 Big-ip Wan Optimization Manager 11.2.0
F5 Big-ip Wan Optimization Manager 11.2.1
F5 Big-ip Wan Optimization Manager 11.1.0
F5 Big-ip Link Controller 11.2.1
F5 Big-ip Link Controller 11.1.0
4.3
CVSSv2
CVE-2014-4023
Cross-site scripting (XSS) vulnerability in tmui/dashboard/echo.jsp in the Configuration utility in F5 BIG-IP LTM, APM, ASM, GTM, and Link Controller 11.0.0 prior to 11.6.0 and 10.1.0 up to and including 10.2.4, AAM 11.4.0 prior to 11.6.0, AFM and PEM 11.3.0 prior to 11.6.0, Anal...
F5 Big-ip Advanced Firewall Manager 11.5.1
F5 Big-ip Advanced Firewall Manager 11.5.0
F5 Big-ip Advanced Firewall Manager 11.4.1
F5 Big-ip Advanced Firewall Manager 11.3.0
F5 Big-ip Advanced Firewall Manager 11.4.0
F5 Big-ip Policy Enforcement Manager 11.4.0
F5 Big-ip Policy Enforcement Manager 11.5.0
F5 Big-ip Policy Enforcement Manager 11.5.1
F5 Big-ip Policy Enforcement Manager 11.3.0
F5 Big-ip Policy Enforcement Manager 11.4.1
F5 Big-ip Application Security Manager 10.2.1
F5 Big-ip Application Security Manager 10.2.3
F5 Big-ip Application Security Manager 11.4.0
F5 Big-ip Application Security Manager 11.5.0
F5 Big-ip Application Security Manager 10.1.0
F5 Big-ip Application Security Manager 11.5.1
F5 Big-ip Application Security Manager 11.0.0
F5 Big-ip Application Security Manager 11.1.0
F5 Big-ip Application Security Manager 11.2.0
F5 Big-ip Application Security Manager 11.2.1
F5 Big-ip Application Security Manager 10.2.0
F5 Big-ip Application Security Manager 10.2.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »