Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
applications manager vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-13050
A SQL Injection vulnerability exists in Zoho ManageEngine Applications Manager 13.x before build 13800 via the j_username parameter in a /j_security_check POST request.
Zohocorp Manageengine Applications Manager 13.0
8.8
CVSSv3
CVE-2019-19475
An issue exists in ManageEngine Applications Manager 14 with Build 14360. Integrated PostgreSQL which is built-in in Applications Manager is prone to attack due to lack of file permission security. The malicious users who are in “Authenticated Users” group can exploit...
Zohocorp Manageengine Applications Manager 14.3
5.3
CVSSv3
CVE-2017-11557
An issue exists in ZOHO ManageEngine Applications Manager 12.3. It is possible for an unauthenticated user to view the list of domain names and usernames used in a company's network environment via a userconfiguration.do?method=editUser request.
Zohocorp Manageengine Applications Manager 12.3
8.8
CVSSv3
CVE-2020-15927
Zoho ManageEngine Applications Manager version 14740 and prior allows an authenticated SQL Injection via a crafted jsp request in the SAP module.
Zohocorp Manageengine Applications Manager 14.7
5.4
CVSSv3
CVE-2016-1598
XSS in NetIQ IDM 4.5 Identity Applications prior to 4.5.4 allows attackers able to change their username to inject arbitrary HTML code into the Role Assignment administrator HTML pages.
Novell Identity Manager 4.5
Novell Identity Manager Identity Applications
9.8
CVSSv3
CVE-2016-0913
The client in EMC Replication Manager (RM) prior to 5.5.3.0_01-PatchHotfix, EMC Network Module for Microsoft 3.x, and EMC Networker Module for Microsoft 8.2.x prior to 8.2.3.6 allows remote RM servers to execute arbitrary commands by placing a crafted script in an SMB share.
Emc Replication Manager
Emc Networker Module For Microsoft Applications
Emc Networker Module For Microsoft Applications 3.0.1
Emc Networker Module For Microsoft Applications 3.0
7.5
CVSSv3
CVE-2014-7863
The FailOverHelperServlet (aka FailServlet) servlet in ZOHO ManageEngine Applications Manager prior to 11.9 build 11912, OpManager 8 up to and including 11.5 build 11400, and IT360 10.5 and previous versions does not properly restrict access, which allows remote attackers and rem...
Zohocorp Manageengine Applications Manager
Zohocorp Manageengine It360
Zohocorp Manageengine Opmanager
1 EDB exploit
NA
CVE-2013-1525
Unspecified vulnerability in the Oracle Retail Integration Bus component in Oracle Industry Applications 13.0, 13.1, and 13.2 allows remote authenticated users to affect confidentiality via unknown vectors related to Retail Integration Bus Manager.
Oracle Industry Applications 13.0
Oracle Industry Applications 13.1
Oracle Industry Applications 13.2
NA
CVE-2012-0231
PRLicenseMgr.exe in the Proficy Server License Manager in GE Intelligent Platforms Proficy Plant Applications 5.0 and previous versions allows remote malicious users to cause a denial of service (memory corruption) or possibly execute arbitrary code via a crafted TCP session on p...
Ge Intelligent Platforms Proficy Plant Applications 215.8
Ge Intelligent Platforms Proficy Plant Applications 4.2.2
Ge Intelligent Platforms Proficy Plant Applications 4.2.3
Ge Intelligent Platforms Proficy Plant Applications
Ge Intelligent Platforms Proficy Plant Applications 4.4.1
Ge Intelligent Platforms Proficy Plant Applications 4.3.1
9.8
CVSSv3
CVE-2018-14720
FasterXML jackson-databind 2.x prior to 2.9.7 might allow malicious users to conduct external XML entity (XXE) attacks by leveraging failure to block unspecified JDK classes from polymorphic deserialization.
Fasterxml Jackson-databind 2.7.0
Fasterxml Jackson-databind
Fasterxml Jackson-databind 2.8.0
Fasterxml Jackson-databind 2.9.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Oracle Primavera Unifier 16.2
Oracle Banking Platform 2.5.0
Oracle Primavera Unifier 16.1
Oracle Jdeveloper 12.1.3.0.0
Oracle Retail Merchandising System 16.0
Oracle Webcenter Portal 12.2.1.3.0
Oracle Primavera Unifier
Oracle Communications Billing And Revenue Management 7.5
Oracle Communications Billing And Revenue Management 12.0
Oracle Financial Services Analytical Applications Infrastructure 8.0.2
Oracle Financial Services Analytical Applications Infrastructure 8.0.3
Oracle Financial Services Analytical Applications Infrastructure 8.0.4
Oracle Financial Services Analytical Applications Infrastructure 8.0.5
Oracle Financial Services Analytical Applications Infrastructure 8.0.6
Oracle Financial Services Analytical Applications Infrastructure 8.0.7
Oracle Banking Platform 2.6.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »