Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
content management system vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2022-1816
A vulnerability, which was classified as problematic, has been found in Zoo Management System 1.0. Affected by this issue is /zoo/admin/public_html/view_accounts?type=zookeeper of the content module. The manipulation of the argument admin_name with the input <script>alert(1...
Phpgurukul Zoo Management System 1.0
6.5
CVSSv2
CVE-2022-24282
A vulnerability has been identified in SINEC NMS (All versions >= V1.0.3 < V2.0), SINEC NMS (All versions < V1.0.3), SINEMA Server V14 (All versions). The affected system allows to upload JSON objects that are deserialized to Java objects. Due to insecure deserialization...
Siemens Sinec Network Management System
7.5
CVSSv2
CVE-2020-23621
The Java Remote Management Interface of all versions of SVI MS Management System exists to contain a vulnerability due to insecure deserialization of user-supplied content, which can allow malicious users to execute arbitrary code via a crafted serialized Java object.
Squire-technologies Svi Ms Management System -
NA
CVE-2022-4273
A vulnerability, which was classified as critical, has been found in SourceCodester Human Resource Management System 1.0. This issue affects some unknown processing of the file /hrm/controller/employee.php of the component Content-Type Handler. The manipulation of the argument pf...
Oretnom23 Human Resource Management System 1.0
5
CVSSv2
CVE-2016-6411
Cisco Firepower Management Center and FireSIGHT System Software 6.0.1 mishandle comparisons between URLs and X.509 certificates, which allows remote malicious users to bypass intended do-not-decrypt settings via a crafted URL, aka Bug ID CSCva50585.
Cisco Firesight System Software 6.0.1
3.5
CVSSv2
CVE-2015-6354
Multiple cross-site scripting (XSS) vulnerabilities in Cisco FireSight Management Center (MC) 5.4.1.3 and 6.0 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuv73338.
Cisco Firesight System Software 5.4.1.3
Cisco Firesight System Software 6.0.0
3.5
CVSSv2
CVE-2015-6363
Multiple cross-site scripting (XSS) vulnerabilities in the web framework in Cisco FireSIGHT Management Center (MC) 5.4.1.4 and 6.0.1 allow remote authenticated users to inject arbitrary web script or HTML via unspecified parameters, aka Bug ID CSCuw88396.
Cisco Firesight System Software 6.0.1
Cisco Firesight System Software 5.4.1.4
7.8
CVSSv2
CVE-2013-5537
The web framework on Cisco Web Security Appliance (WSA), Email Security Appliance (ESA), and Content Security Management Appliance (SMA) devices does not properly manage the state of HTTP and HTTPS sessions, which allows remote malicious users to cause a denial of service (manage...
Cisco Web Security Appliance -
Cisco Content Security Management Appliance -
Cisco Email Security Appliance Firmware -
6.8
CVSSv2
CVE-2015-6357
The rule-update feature in Cisco FireSIGHT Management Center (MC) 5.2 up to and including 5.4.0.1 does not verify the X.509 certificate of the support.sourcefire.com SSL server, which allows man-in-the-middle malicious users to spoof this server and provide an invalid package, an...
Cisco Firesight System Software 5.3.1.1
Cisco Firesight System Software 5.3.1.2
Cisco Firesight System Software 5.4.0.1
Cisco Firesight System Software 5.2.0
Cisco Firesight System Software 5.3.0
Cisco Firesight System Software 5.3.1.5
Cisco Firesight System Software 5.4.0
1 Github repository
6.8
CVSSv2
CVE-2015-6399
The Supervisor 1.0.0.0 and 1.0.0.1 in Cisco Integrated Management Controller (IMC) prior to 2.0(9) allows remote authenticated users to cause a denial of service (IP interface outage) via crafted parameters in an HTTP request, aka Bug ID CSCuv38286.
Cisco Integrated Management Controller Supervisor 1.0.0.0
Cisco Integrated Management Controller Supervisor 1.0.0.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »