Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
admin vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-0492
Cross-site scripting (XSS) vulnerability in IBM Informix Open Admin Tool (OAT) 2.x and 3.x prior to 3.11.1 allows remote authenticated users to inject arbitrary web script or HTML via a crafted URL.
Ibm Informix Open Admin Tool 3.0
Ibm Informix Open Admin Tool 2.0
8.8
CVSSv3
CVE-2021-26795
A SQL Injection vulnerability in /appliance/shiftmgn.php in TalariaX sendQuick Alert Plus Server Admin 4.3 prior to 8HF11 allows malicious users to obtain sensitive information via a Roster Time to Roster Management.
Talariax Sendquick Alert Plus Server Admin
Talariax Sendquick Alert Plus Server Admin 4.3
4.3
CVSSv3
CVE-2023-49783
Silverstripe Admin provides a basic management interface for the Silverstripe Framework. In versions on the 1.x branch before 1.13.19 and on the 2.x branch before 2.1.8, users who don't have edit or delete permissions for records exposed in a `ModelAdmin` can still edit or d...
Silverstripe Admin
5.3
CVSSv3
CVE-2023-46754
The admin panel for Obl.ong prior to 1.1.2 allows authorization bypass because the email OTP feature accepts arbitrary numerical values.
Obl.ong Admin
NA
CVE-2022-23079
In motor-admin versions 0.0.1 up to and including 0.2.56 are vulnerable to host header injection in the password reset functionality where malicious actor can send fake password reset email to arbitrary victim.
Getmotoradmin Motor Admin
9.8
CVSSv3
CVE-2023-51411
Unrestricted Upload of File with Dangerous Type vulnerability in Shabti Kaplan Frontend Admin by DynamiApps.This issue affects Frontend Admin by DynamiApps: from n/a up to and including 3.18.3.
Dynamiapps Frontend Admin
9.8
CVSSv3
CVE-2023-51763
csv_builder.rb in ActiveAdmin (aka Active Admin) prior to 3.2.0 allows CSV injection.
Activeadmin Active Admin
6.1
CVSSv3
CVE-2023-30782
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Andy Moyle Church Admin plugin <= 3.7.5 versions.
Churchadminplugin Church Admin
8.8
CVSSv3
CVE-2023-48292
The XWiki Admin Tools Application provides tools to help the administration of XWiki. Starting in version 4.4 and prior to version 4.5.1, a cross site request forgery vulnerability in the admin tool for executing shell commands on the server allows an malicious user to execute ar...
Xwiki Admin Tools
4.3
CVSSv3
CVE-2024-0879
Authentication bypass in vector-admin allows a user to register to a vector-admin server while “domain restriction” is active, even when not owning an authorized email address.
Mintplexlabs Vector Admin
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »