Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web gateway vulnerabilities and exploits
(subscribe to this query)
785
VMScore
CVE-2009-2257
The administrative web interface on the Netgear DG632 with firmware 3.4.0_ap allows remote malicious users to bypass authentication via a direct request to (1) gateway/commands/saveconfig.html, and (2) stattbl.htm, (3) modemmenu.htm, (4) onload.htm, (5) form.css, (6) utility.js, ...
Netgear Dg632 3.4.0 Ap
1 EDB exploit
770
VMScore
CVE-2002-0079
Buffer overflow in the chunked encoding transfer mechanism in Internet Information Server (IIS) 4.0 and 5.0 Active Server Pages allows malicious users to cause a denial of service or execute arbitrary code.
Microsoft Internet Information Services 5.0
Microsoft Internet Information Server 4.0
4 EDB exploits
760
VMScore
CVE-2012-6329
The _compile function in Maketext.pm in the Locale::Maketext implementation in Perl prior to 5.17.7 does not properly handle backslashes and fully qualified method names during compilation of bracket notation, which allows context-dependent malicious users to execute arbitrary co...
Perl Perl 5.16.0
Perl Perl 5.14.3
Perl Perl 5.14.0
Perl Perl 5.13.2
Perl Perl 5.10.0
Perl Perl 5.12.0
Perl Perl 5.11.4
Perl Perl 5.11.2
Perl Perl 5.11.3
Perl Perl 5.12.3
Perl Perl
Perl Perl 5.16.1
Perl Perl 5.14.1
Perl Perl 5.13.0
Perl Perl 5.13.3
Perl Perl 5.11.0
Perl Perl 5.10
Perl Perl 5.12.1
Perl Perl 5.12.2
Perl Perl 5.10.1
Perl Perl 5.13.5
Perl Perl 5.13.4
2 EDB exploits
760
VMScore
CVE-2002-0724
Buffer overflow in SMB (Server Message Block) protocol in Microsoft Windows NT, Windows 2000, and Windows XP allows malicious users to cause a denial of service (crash) via a SMB_COM_TRANSACTION packet with a request for the (1) NetShareEnum, (2) NetServerEnum2, or (3) NetServerE...
Microsoft Windows 2000
Microsoft Windows Nt 4.0
Microsoft Windows Xp
2 EDB exploits
756
VMScore
CVE-2015-5690
The management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to bypass intended access restrictions and execute arbitrary commands by leveraging a "redirect."
Symantec Web Gateway
756
VMScore
CVE-2010-3037
goform/websXMLAdminRequestCgi.cgi in Cisco Unified Videoconferencing (UVC) System 5110 and 5115, and possibly Unified Videoconferencing System 3545 and 5230, Unified Videoconferencing 3527 Primary Rate Interface (PRI) Gateway, Unified Videoconferencing 3522 Basic Rate Interfaces ...
Cisco Unified Videoconferencing System 5115 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5110 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5115
Cisco Unified Videoconferencing System 5110
Cisco Unified Videoconferencing System 3527 Primary Rate Interface Gateway Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3522 Basic Rate Interface Gateway Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3515 Multipoint Control Unit Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3545 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 5230 Firmware 7.0.1.13.3
Cisco Unified Videoconferencing System 3522 Basic Rate Interface Gateway
Cisco Unified Videoconferencing System 3515 Multipoint Control Unit
Cisco Unified Videoconferencing System 3545
Cisco Unified Videoconferencing System 5230
Cisco Unified Videoconferencing System 3527 Primary Rate Interface Gateway
755
VMScore
CVE-2018-12464
A SQL injection vulnerability in the web administration and quarantine components of Micro Focus Secure Messaging Gateway allows an unauthenticated remote malicious user to execute arbitrary SQL statements against the database. This can be exploited to create an administrative ac...
Microfocus Secure Messaging Gateway
1 EDB exploit
755
VMScore
CVE-2015-6401
Cisco EPC3928 devices with EDVA 5.5.10, 5.5.11, and 5.7.1 allow remote malicious users to bypass an intended authentication requirement and execute unspecified administrative functions via a crafted HTTP request, aka Bug ID CSCux24941.
Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.5.10
Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.5.11
Cisco Epc3928 Docsis 3.0 8x4 Wireless Residential Gateway With Embedded Digital Voice Adapter 5.7.1
1 EDB exploit
755
VMScore
CVE-2012-4178
SQL injection vulnerability in spywall/includes/deptUploads_data.php in Symantec Web Gateway 5.0.3.18 allows remote malicious users to execute arbitrary SQL commands via the groupid parameter.
Symantec Web Gateway 5.0.3.18
1 EDB exploit
755
VMScore
CVE-2012-2574
SQL injection vulnerability in the management console in Symantec Web Gateway 5.0.x prior to 5.0.3.18 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors, related to a "blind SQL injection" issue.
Symantec Web Gateway 5.0.2
Symantec Web Gateway 5.0.3
Symantec Web Gateway 5.0.1
Symantec Web Gateway 5.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »