Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
knowledge vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2008-1222
Cross-site scripting (XSS) vulnerability in Dokeos 1.8.4 before SP3 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Dokeos Open Source Learning And Knowledge Management Tool 1.8.4
7.5
CVSSv2
CVE-2008-1223
Unspecified vulnerability in Dokeos 1.8.4 before SP3 allows malicious users to execute arbitrary code via unspecified vectors.
Dokeos Open Source Learning And Knowledge Management Tool 1.8.4
NA
CVE-2023-28955
IBM Watson Knowledge Catalog on Cloud Pak for Data 4.0 could allow an authenticated user send a specially crafted request that could cause a denial of service. IBM X-Force ID: 251704.
Ibm Watson Knowledge Catalog On Cloud Pak For Data
NA
CVE-2023-28958
IBM Watson Knowledge Catalog on Cloud Pak for Data 4.0 is potentially vulnerable to CSV Injection. A remote attacker could execute arbitrary commands on the system, caused by improper validation of csv file contents. IBM X-Force ID: 251782.
Ibm Watson Knowledge Catalog On Cloud Pak For Data 4.0
2.1
CVSSv2
CVE-2019-4220
IBM InfoSphere Information Server 11.7.1.0 stores a common hard coded encryption key that could be used to decrypt sensitive information. IBM X-Force ID: 159229.
Ibm Watson Knowledge Catalog 11.7.1.0
Ibm Infosphere Information Server On Cloud 11.7.1.0
6.5
CVSSv2
CVE-2017-16678
Server Side Request Forgery (SSRF) vulnerability in SAP NetWeaver Knowledge Management Configuration Service, EPBC and EPBC2 from 7.00 to 7.02; KMC-BC 7.30, 7.31, 7.40 and 7.50, that allows an malicious user to manipulate the vulnerable application to send crafted requests on beh...
Sap Netweaver Knowledge Management Configuration Service -
Sap Epbc2
Sap Epbc
Sap Kmc-bc 7.30
Sap Kmc-bc 7.31
Sap Kmc-bc 7.40
Sap Kmc-bc 7.50
7.5
CVSSv2
CVE-2008-1430
SQL injection vulnerability in links.asp in ASPapp allows remote malicious users to execute arbitrary SQL commands via the CatId parameter.
Iatek Aspapp
2 EDB exploits
5.1
CVSSv2
CVE-2006-2134
PHP remote file inclusion vulnerability in /includes/kb_constants.php in Knowledge Base Mod for PHPbb 2.0.2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the module_root_path parameter.
Phpbb Group Phpbb 1.4.2
Phpbb Group Phpbb 1.4.4
Phpbb Group Phpbb
Phpbb Group Phpbb 1.0.0
Phpbb Group Phpbb 1.0.1
Phpbb Group Phpbb 2.0.0
Phpbb Group Phpbb 2.0.1
Phpbb Group Phpbb 2.0 Beta1
Phpbb Group Phpbb 1.4.0
Phpbb Group Phpbb 1.4.1
Phpbb Group Phpbb 2.0 Rc3
Phpbb Group Phpbb 2.0 Rc4
Phpbb Group Phpbb 1.2.0
Phpbb Group Phpbb 1.2.1
Phpbb Group Phpbb 2.0 Rc1
Phpbb Group Phpbb 2.0 Rc2
1 EDB exploit
NA
CVE-2021-420632
SAP Knowledge Warehouse versions 7.30, 7.31, 7.40, and 7.50 suffer from a cross site scripting vulnerability.
NA
CVE-2021-420632021
SAP Knowledge Warehouse versions 7.30, 7.31, 7.40, and 7.50 suffer from a cross site scripting vulnerability.
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »