Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
next vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2024-24558
TanStack Query supplies asynchronous state management, server-state utilities and data fetching for the web. The `@tanstack/react-query-next-experimental` NPM package is vulnerable to a cross-site scripting vulnerability. To exploit this, an attacker would need to either inject m...
Tanstack React-query-next-experimental
5.4
CVSSv3
CVE-2018-1912
IBM DOORS Next Generation (DNG/RRC) 6.0.2 up to and including 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure withi...
Ibm Rational Doors Next Generation
5.4
CVSSv3
CVE-2017-1678
IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted se...
Ibm Rational Doors Next Generation
5.4
CVSSv3
CVE-2018-1911
IBM DOORS Next Generation (DNG/RRC) 5.0 up to and including 5.0.2 and 6.0 up to and including 6.0.6 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading...
Ibm Rational Doors Next Generation
5.4
CVSSv3
CVE-2017-1461
IBM DOORS Next Generation (DNG/RRC) 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted se...
Ibm Rational Doors Next Generation
7.5
CVSSv3
CVE-2023-45886
The BGP daemon (bgpd) in IP Infusion ZebOS up to and including 7.10.6 allow remote malicious users to cause a denial of service by sending crafted BGP update messages containing a malformed attribute.
F5 Big-ip Next 20.0.1
F5 Big-ip Next Service Proxy For Kubernetes
F5 Big-ip Next Cloud-native Network Functions
F5 Big-ip Local Traffic Manager
F5 Big-ip Global Traffic Manager
Ipinfusion Zebos
5.4
CVSSv3
CVE-2017-1128
IBM Rational DOORS Next Generation 4.0, 5.0, and 6.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted ses...
Ibm Rational Doors Next Generation 6.0.2
Ibm Rational Doors Next Generation 5.0.0
Ibm Rational Requirements Composer 4.0.0.2
Ibm Rational Requirements Composer 4.0.2
Ibm Rational Requirements Composer 4.0.4
Ibm Rational Doors Next Generation 5.0.1
Ibm Rational Doors Next Generation 5.0.2
Ibm Rational Requirements Composer 4.0.0
Ibm Rational Requirements Composer 4.0.0.1
Ibm Rational Requirements Composer 4.0
Ibm Rational Doors Next Generation 6.0.1
Ibm Rational Requirements Composer 4.0.5
Ibm Rational Requirements Composer 4.0.6
Ibm Rational Requirements Composer 4.0.7
Ibm Rational Doors Next Generation 6.0.0
Ibm Rational Doors Next Generation 5.0
Ibm Rational Requirements Composer 4.0.1
Ibm Rational Requirements Composer 4.0.3
5.3
CVSSv3
CVE-2023-30802
The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to a source code disclosure vulnerability. A remote and unauthenticated attacker can obtain PHP source code by sending an HTTP request with an invalid Content-Length field.
Sangfor Next-gen Application Firewall 8.0.17
9.8
CVSSv3
CVE-2023-30803
The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authentication bypass vulnerability. A remote and unauthenticated attacker can bypass authentication and access administrative functionality by sending HTTP requests using a crafted Y-forwarded-for h...
Sangfor Next-gen Application Firewall 8.0.17
6.5
CVSSv3
CVE-2023-30804
The Sangfor Next-Gen Application Firewall version NGAF8.0.17 is vulnerable to an authenticated file disclosure vulnerability. A remote and authenticated attacker can read arbitrary system files using the svpn_html/loadfile.php endpoint. This issue is exploitable by a remote and u...
Sangfor Next-gen Application Firewall 8.0.17
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-20065
open redirect
CVE-2024-1086
path traversal
CVE-2024-29825
XXE
CVE-2024-29822
CVE-2024-20696
CVE-2024-3564
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »