Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
admin vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2000-0707
PCCS MySQLDatabase Admin Tool Manager 1.2.4 and previous versions installs the file dbconnect.inc within the web root, which allows remote malicious users to obtain sensitive information such as the administrative password.
Pccs-linux Mysqldatabase Admin Tool 1.2.3
Pccs-linux Mysqldatabase Admin Tool 1.2.4
578
VMScore
CVE-2021-26795
A SQL Injection vulnerability in /appliance/shiftmgn.php in TalariaX sendQuick Alert Plus Server Admin 4.3 prior to 8HF11 allows malicious users to obtain sensitive information via a Roster Time to Roster Management.
Talariax Sendquick Alert Plus Server Admin
Talariax Sendquick Alert Plus Server Admin 4.3
NA
CVE-2023-49783
Silverstripe Admin provides a basic management interface for the Silverstripe Framework. In versions on the 1.x branch before 1.13.19 and on the 2.x branch before 2.1.8, users who don't have edit or delete permissions for records exposed in a `ModelAdmin` can still edit or d...
Silverstripe Admin
NA
CVE-2023-46754
The admin panel for Obl.ong prior to 1.1.2 allows authorization bypass because the email OTP feature accepts arbitrary numerical values.
Obl.ong Admin
606
VMScore
CVE-2022-23079
In motor-admin versions 0.0.1 up to and including 0.2.56 are vulnerable to host header injection in the password reset functionality where malicious actor can send fake password reset email to arbitrary victim.
Getmotoradmin Motor Admin
NA
CVE-2023-51411
Unrestricted Upload of File with Dangerous Type vulnerability in Shabti Kaplan Frontend Admin by DynamiApps.This issue affects Frontend Admin by DynamiApps: from n/a up to and including 3.18.3.
Dynamiapps Frontend Admin
NA
CVE-2023-51763
csv_builder.rb in ActiveAdmin (aka Active Admin) prior to 3.2.0 allows CSV injection.
Activeadmin Active Admin
NA
CVE-2023-30782
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Andy Moyle Church Admin plugin <= 3.7.5 versions.
Churchadminplugin Church Admin
NA
CVE-2023-48292
The XWiki Admin Tools Application provides tools to help the administration of XWiki. Starting in version 4.4 and prior to version 4.5.1, a cross site request forgery vulnerability in the admin tool for executing shell commands on the server allows an malicious user to execute ar...
Xwiki Admin Tools
NA
CVE-2024-0879
Authentication bypass in vector-admin allows a user to register to a vector-admin server while “domain restriction” is active, even when not owning an authorized email address.
Mintplexlabs Vector Admin
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »