Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
community server vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2015-2918
The Studio component in OrientDB Server Community Edition prior to 2.0.15 and 2.1.x prior to 2.1.1 does not properly restrict use of FRAME elements, which makes it easier for remote malicious users to conduct clickjacking attacks via a crafted web site.
Orientdb Orientdb 2.0.14
Orientdb Orientdb 2.1.0
5
CVSSv2
CVE-2001-1434
Cisco IOS 12.0(5)XU up to and including 12.1(2) allows remote malicious users to read system administration and topology information via an "snmp-server host" command, which creates a readable "community" community string if one has not been previously created...
Cisco Ios 12.0\\(1\\)xb
Cisco Ios 12.0\\(1\\)xe
Cisco Ios 12.0\\(11\\)st4
Cisco Ios 12.0\\(11a\\)
Cisco Ios 12.0\\(14\\)s7
Cisco Ios 12.0\\(14\\)st
Cisco Ios 12.0\\(16\\)sc3
Cisco Ios 12.0\\(16\\)st1
Cisco Ios 12.0\\(17\\)sl2
Cisco Ios 12.0\\(17\\)sl6
Cisco Ios 12.0\\(18\\)w5\\(22b\\)
Cisco Ios 12.0\\(18b\\)
Cisco Ios 12.0\\(3\\)
Cisco Ios 12.0\\(3\\)t2
Cisco Ios 12.0\\(4\\)xm1
Cisco Ios 12.0\\(5\\)t
Cisco Ios 12.0\\(5\\)wx
Cisco Ios 12.0\\(5\\)xe
Cisco Ios 12.0\\(5\\)xk
Cisco Ios 12.0\\(5.1\\)xp
Cisco Ios 12.0\\(5.2\\)xu
Cisco Ios 12.0\\(7\\)sc
5.8
CVSSv2
CVE-2017-1489
IBM Security Access Manager 6.1, 7.0, 8.0, and 9.0 e-community configurations may be affected by a redirect vulnerability. ECSSO Master Authentication can redirect to a server not participating in an e-community domain. IBM X-Force ID: 128687.
Ibm Tivoli Access Manager For E-business 6.1.0.4
Ibm Tivoli Access Manager For E-business 6.1.0.6
Ibm Tivoli Access Manager For E-business 6.1.0.13
Ibm Tivoli Access Manager For E-business 6.1.0.15
Ibm Tivoli Access Manager For E-business 6.1.0.22
Ibm Tivoli Access Manager For E-business 6.1.0.24
Ibm Tivoli Access Manager For E-business 6.1.0.29
Ibm Tivoli Access Manager For E-business 6.1.0.31
Ibm Tivoli Access Manager For E-business 6.1.0
Ibm Tivoli Access Manager For E-business 6.1.0.1
Ibm Tivoli Access Manager For E-business 6.1.0.2
Ibm Tivoli Access Manager For E-business 6.1.0.3
Ibm Tivoli Access Manager For E-business 6.1.0.16
Ibm Tivoli Access Manager For E-business 6.1.0.17
Ibm Tivoli Access Manager For E-business 6.1.0.18
Ibm Tivoli Access Manager For E-business 6.1.0.19
Ibm Tivoli Access Manager For E-business 6.1.0.20
Ibm Tivoli Access Manager For E-business 6.1.0.8
Ibm Tivoli Access Manager For E-business 6.1.0.9
Ibm Tivoli Access Manager For E-business 6.1.0.10
Ibm Tivoli Access Manager For E-business 6.1.0.11
Ibm Tivoli Access Manager For E-business 6.1.0.25
NA
CVE-2022-46157
Akeneo PIM is an open source Product Information Management (PIM). Akeneo PIM Community Edition versions before v5.0.119 and v6.0.53 allows remote authenticated users to execute arbitrary PHP code on the server by uploading a crafted image. Akeneo PIM Community Edition after the ...
Akeneo Product Information Management
NA
CVE-2023-34939
Onlyoffice Community Server before v12.5.2 exists to contain a remote code execution (RCE) vulnerability via the component UploadProgress.ashx.
Onlyoffice Onlyoffice
1 Github repository
5.5
CVSSv2
CVE-2017-5530
The tibbr web server components of tibbr Community, and tibbr Enterprise contain SAML protocol handling errors which may allow authorized users to impersonate other users, and therefore escalate their access privileges. Affected releases are tibbr Community 5.2.1 and below; 6.0.0...
Tibco Tibbr 6.0.0
Tibco Tibbr 6.0.1
Tibco Tibbr
Tibco Tibbr 7.0.0
4
CVSSv2
CVE-2020-11652
An issue exists in SaltStack Salt prior to 2019.2.4 and 3000 prior to 3000.2. The salt-master process ClearFuncs class allows access to some methods that improperly sanitize paths. These methods allow arbitrary directory access to authenticated users.
Saltstack Salt
Opensuse Leap 15.1
Debian Debian Linux 8.0
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 16.04
Blackberry Workspaces Server 9.1.0
Blackberry Workspaces Server
Vmware Application Remote Collector 8.0.0
Vmware Application Remote Collector 7.5.0
12 Github repositories
4 Articles
NA
CVE-2022-20924
A vulnerability in the Simple Network Management Protocol (SNMP) feature of Cisco Adaptive Security Appliance (ASA) Software and Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, remote malicious user to cause a denial of service (DoS) condition on an af...
Cisco Adaptive Security Appliance Software 9.14.1.30
Cisco Adaptive Security Appliance Software 9.14.1.15
Cisco Adaptive Security Appliance Software 9.14.2
Cisco Adaptive Security Appliance Software 9.14.2.4
Cisco Adaptive Security Appliance Software 9.14.2.8
Cisco Adaptive Security Appliance Software 9.14.2.13
Cisco Adaptive Security Appliance Software 9.14.2.15
Cisco Adaptive Security Appliance Software 9.15.1.15
Cisco Adaptive Security Appliance Software 9.15.1.16
Cisco Adaptive Security Appliance Software 9.15.1.17
Cisco Adaptive Security Appliance Software 9.15.1.1
Cisco Adaptive Security Appliance Software 9.17.1
Cisco Adaptive Security Appliance Software 9.14.1.10
Cisco Adaptive Security Appliance Software 9.14.1.19
Cisco Adaptive Security Appliance Software 9.14.3
Cisco Adaptive Security Appliance Software 9.14.3.9
Cisco Adaptive Security Appliance Software 9.15.1
Cisco Adaptive Security Appliance Software 9.15.1.10
Cisco Adaptive Security Appliance Software 9.15.1.21
Cisco Adaptive Security Appliance Software 9.17.1.7
Cisco Adaptive Security Appliance Software 9.16.3.14
Cisco Adaptive Security Appliance Software 9.17.1.10
5
CVSSv2
CVE-2021-43052
The Realm Server component of TIBCO Software Inc.'s TIBCO FTL - Community Edition, TIBCO FTL - Developer Edition, and TIBCO FTL - Enterprise Edition contains an easily exploitable vulnerability that allows authentication bypass due to a hard coded secret used in the default ...
Tibco Ftl
4
CVSSv2
CVE-2021-21269
Keymaker is a Mastodon Community Finder based Matrix Community serverlist page Server. In Keymaker before version 0.2.0, the assets endpoint did not check for the extension. The rust `join` method without checking user input might have made it abe to do a Path Traversal attack ca...
Keymaker Project Keymaker
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »