Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webaccess vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2006-3817
Cross-site scripting (XSS) vulnerability in Novell GroupWise WebAccess 6.5 and 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via an encoded SCRIPT element in an e-mail message with the UTF-7 character set, as demonstrated by the "+A...
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
383
VMScore
CVE-2006-3818
Cross-site scripting (XSS) vulnerability in the login page in Novell GroupWise WebAccess 6.5 prior to 20060721 and WebAccess 7 prior to 20060727 allows remote malicious users to inject arbitrary web script or HTML via the GWAP.version parameter.
Novell Groupwise Webaccess 6.5
Novell Groupwise Webaccess 7
801
VMScore
CVE-2019-13550
In WebAccess, versions 8.4.1 and prior, an improper authorization vulnerability may allow an malicious user to disclose sensitive information, cause improper control of generation of code, which may allow remote code execution or cause a system crash.
Advantech Webaccess
578
VMScore
CVE-2019-13552
In WebAccess versions 8.4.1 and prior, multiple command injection vulnerabilities are caused by a lack of proper validation of user-supplied data and may allow arbitrary file deletion and remote code execution.
Advantech Webaccess
1000
VMScore
CVE-2017-16720
A Path Traversal issue exists in WebAccess versions 8.3.2 and previous versions. An attacker has access to files within the directory structure of the target device.
Advantech Webaccess
1 EDB exploit
641
VMScore
CVE-2014-8388
Stack-based buffer overflow in Advantech WebAccess, formerly BroadWin WebAccess, prior to 8.0 allows remote malicious users to execute arbitrary code via a crafted ip_address parameter in an HTML document.
Advantech Webaccess
668
VMScore
CVE-2021-38389
Advantech WebAccess versions 9.02 and prior are vulnerable to a stack-based buffer overflow, which may allow an malicious user to remotely execute code.
Advantech Webaccess
694
VMScore
CVE-2016-0851
Advantech WebAccess prior to 8.1 allows remote malicious users to cause a denial of service (out-of-bounds memory access) via unspecified vectors.
Advantech Webaccess
445
VMScore
CVE-2016-0853
Advantech WebAccess prior to 8.1 allows remote malicious users to obtain sensitive information via crafted input.
Advantech Webaccess
1000
VMScore
CVE-2016-0854
Unrestricted file upload vulnerability in the uploadImageCommon function in the UploadAjaxAction script in the WebAccess Dashboard Viewer in Advantech WebAccess prior to 8.1 allows remote malicious users to write to files of arbitrary types via unspecified vectors.
Advantech Webaccess
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »