Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
site server vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2012-2591
Multiple cross-site scripting (XSS) vulnerabilities in EmailArchitect Email Server 10.0 and 10.0.0.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) From or (2) Date field in an email.
Emailarchitect Emailarchitect Email Server 10.0.0.3
Emailarchitect Emailarchitect Email Server 10.0
1 EDB exploit
4.3
CVSSv2
CVE-2016-2789
Cross-site scripting (XSS) vulnerability in the Web User Interface in Citrix XenMobile Server 10.0, 10.1 before Rolling Patch 4, and 10.3 before Rolling Patch 1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Citrix Xenmobile Server 10.3
Citrix Xenmobile Server 10.0
Citrix Xenmobile Server 10.1
4.3
CVSSv2
CVE-2005-3635
Multiple cross-site scripting (XSS) vulnerabilities in SAP Web Application Server (WAS) 6.10 up to and including 7.00 allow remote malicious users to inject arbitrary web script or HTML via (1) the sap-syscmd in sap-syscmd and (2) the BspApplication field in the SYSTEM PUBLIC tes...
Sap Sap Web Application Server 6.10
Sap Sap Web Application Server 7.0
Sap Sap Web Application Server 6.20
Sap Sap Web Application Server 6.40
1 EDB exploit
4.3
CVSSv2
CVE-2017-0055
Microsoft Internet Information Server (IIS) in Windows Vista SP2; Windows Server 2008 SP2 and R2; Windows 7 SP1; Windows 8.1; Windows Server 2012 Gold and R2; Windows RT 8.1; Windows 10 Gold, 1511, and 1607; and Windows Server 2016 allows remote malicious users to perform cross-s...
Microsoft Windows Server 2012 -
Microsoft Windows Server 2012 R2
Microsoft Windows 10 1607
Microsoft Windows Rt 8.1
Microsoft Windows Vista
Microsoft Windows Server 2016
Microsoft Windows 8.1
Microsoft Windows 7
Microsoft Windows 10 -
Microsoft Windows 10 1511
Microsoft Windows Server 2008
Microsoft Windows Server 2008 R2
2 Github repositories
3.5
CVSSv2
CVE-2014-0371
Unspecified vulnerability in the Oracle Demantra Demand Management component in Oracle Supply Chain Products Suite 7.2.0.3 SQL-Server, 7.3.0.x, 7.3.1.x, 12.2.0, 12.2.1, and 12.2.2 allows remote authenticated users to affect integrity via unknown vectors related to DM Others.
Oracle Supply Chain Products Suite Sql-server 7.3.1
Oracle Supply Chain Products Suite Sql-server 12.2.0
Oracle Supply Chain Products Suite 7.2.0.3
Oracle Supply Chain Products Suite Sql-server 7.3.0
Oracle Supply Chain Products Suite Sql-server 12.2.1
Oracle Supply Chain Products Suite Sql-server 12.2.2
4.3
CVSSv2
CVE-2007-3553
Cross-site scripting (XSS) vulnerability in Rapid Install Web Server in Oracle Application Server 11i allows remote malicious users to inject arbitrary web script or HTML via a URL to the "Secondary Login Page", as demonstrated using (1) pls/ and (2) pls/MSBEP004/. NOTE...
Oracle Application Server 11i
Oracle Rapid Install Web Server
1 EDB exploit
4.3
CVSSv2
CVE-2018-7203
Cross-site scripting (XSS) vulnerability in Twonky Server 7.0.11 up to and including 8.5 allows remote malicious users to inject arbitrary web script or HTML via the friendlyname parameter to rpc/set_all.
Lynxtechnology Twonky Server
1 EDB exploit
3.5
CVSSv2
CVE-2017-0891
Nextcloud Server prior to 9.0.58 and 10.0.5 and 11.0.3 are vulnerable to an inadequate escaping of error messages leading to XSS vulnerabilities in multiple components.
Nextcloud Nextcloud Server
3.5
CVSSv2
CVE-2008-5026
Microsoft SharePoint uses URLs with the same hostname and port number for a web site's primary files and individual users' uploaded files (aka attachments), which allows remote authenticated users to leverage same-origin relationships and conduct cross-site scripting (X...
Microsoft Sharepoint Server
6.8
CVSSv2
CVE-2014-3305
Cross-site request forgery (CSRF) vulnerability in the web framework in Cisco WebEx Meetings Server 1.5(.1.131) and previous versions allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors, aka Bug ID CSCuj81735.
Cisco Webex Meetings Server 1.5\\(.1.6\\)
Cisco Webex Meetings Server 1.5
Cisco Webex Meetings Server
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »