Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
express vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2005-3431
Absolute path traversal vulnerability in Rockliffe MailSite Express prior to 6.1.22 allows remote malicious users to read arbitrary files via a full pathname in the AttachPath field of a mail message under composition.
Rockliffe Mailsite Express
445
VMScore
CVE-2000-0764
Intel Express 500 series switches allow a remote malicious user to cause a denial of service via a malformed IP packet.
Intel Express 8100
383
VMScore
CVE-2014-4308
Multiple cross-site scripting (XSS) vulnerabilities in NICE Recording eXpress (aka Cybertech eXpress) prior to 6.5.5 allow remote malicious users to inject arbitrary web script or HTML via the (1) USRLNM parameter to myaccount/mysettings.edit.validate.asp or the frame parameter t...
Nice Recording Express
NA
CVE-2017-20160
A vulnerability was found in flitto express-param up to 0.x. It has been classified as critical. This affects an unknown part of the file lib/fetchParams.js. The manipulation leads to improper handling of extra parameters. It is possible to initiate the attack remotely. Upgrading...
Flitto Express-param
516
VMScore
CVE-2016-3448
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 5.0.4 allows remote malicious users to affect confidentiality and integrity via unknown vectors.
Oracle Application Express
445
VMScore
CVE-2016-3467
Unspecified vulnerability in the Application Express component in Oracle Database Server prior to 5.0.4 allows remote malicious users to affect availability via unknown vectors.
Oracle Application Express
445
VMScore
CVE-2020-12120
The Correos Express addon for PrestaShop 1.6 up to and including 1.7 allows remote malicious users to obtain sensitive information, such as a service's owner password that can be used to modify orders via SOAP. Attackers can also retrieve information about orders or buyers.
Prestashop Correos Express
356
VMScore
CVE-2021-26073
Broken Authentication in Atlassian Connect Express (ACE) from version 3.0.2 before version 6.6.0: Atlassian Connect Express is a Node.js package for building Atlassian Connect apps. Authentication between Atlassian products and the Atlassian Connect Express app occurs with a serv...
Atlassian Connect Express
187
VMScore
CVE-2020-13473
NCH Express Accounts 8.24 and previous versions allows local users to discover the cleartext password by reading the configuration file.
Nchsoftware Express Accounts
356
VMScore
CVE-2020-13474
In NCH Express Accounts 8.24 and previous versions, an authenticated low-privilege user can enter a crafted URL to access higher-privileged functionalities such as Add/Edit users.
Nchsoftware Express Accounts
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »