Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nsa vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2018-5280
SonicWall SonicOS on Network Security Appliance (NSA) 2016 Q4 devices has XSS via the Configure SSO screens.
Sonicwall Sonicos 6.2.7.0
Sonicwall Sonicos 6.2.9.0
Sonicwall Sonicos 6.5.0.0
Sonicwall Sonicos 6.5.1.0
Sonicwall Sonicos 6.5.2.0
5.4
CVSSv3
CVE-2018-5281
SonicWall SonicOS on Network Security Appliance (NSA) 2017 Q4 devices has XSS via the CFS Custom Category and Cloud AV DB Exclusion Settings screens.
Sonicwall Sonicos
NA
CVE-2015-1130
The XPC implementation in Admin Framework in Apple OS X prior to 10.10.3 allows local users to bypass authentication and obtain admin privileges via unspecified vectors.
Apple Mac Os X
2 EDB exploits
8 Github repositories
2 Articles
NA
CVE-2014-2589
Cross-site scripting (XSS) vulnerability in the Dashboard Backend service (stats/dashboard.jsp) in SonicWall Network Security Appliance (NSA) 2400 allows remote malicious users to inject arbitrary web script or HTML via the sn parameter.
Sonicwall Nsa 2400 -
NA
CVE-2006-0976
Directory traversal vulnerability in scan_lang_insert.php in Boris Herbiniere-Seve SPiD 1.3.1 allows remote malicious users to read arbitrary files via the lang parameter.
Spid Spid 1.3.1
1 EDB exploit
NA
CVE-2006-0922
CubeCart 3.0 up to and including 3.6 does not properly check authorization for an administration session because of a missing auth.inc.php include, which results in an absolute path traversal vulnerability in FileUpload in connector.php (aka upload.php) that allows remote malicio...
Devellion Cubecart 3.0.0 Final
Devellion Cubecart 3.0.1
Devellion Cubecart 3.0.0 Alpha-rgf
Devellion Cubecart 3.0.0 Beta
Devellion Cubecart 3.0.6
Devellion Cubecart 3.0.2
Devellion Cubecart 3.0.3
Devellion Cubecart 3.0.0 Alpha
Devellion Cubecart 3.0.0 Alpha-2
Devellion Cubecart 3.0.4
Devellion Cubecart 3.0.5
1 EDB exploit
NA
CVE-2006-0936
Free Host Shop Website Generator 3.3 allows remote authenticated users with administrative privileges to upload and execute arbitrary files via a formname parameter with a filename containing a dangerous file extension and a trailing %00.
Free Host Shop Website Generator 3.3
1 EDB exploit
NA
CVE-2004-1396
Winamp 5.07 and possibly other versions, allows remote malicious users to cause a denial of service (application crash or CPU consumption) via (1) an mp4 or m4a playlist file that contains invalid tag data or (2) an invalid .nsv or .nsa file.
Nullsoft Winamp 5.07
NA
CVE-2001-0073
Buffer overflow in the find_default_type function in libsecure in NSA Security-enhanced Linux, which may allow malicious users to modify critical data in memory.
Nsa Security-enhanced Linux Slinux 2000-12-18
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-52710
arbitrary
CVE-2024-5272
CVE-2024-2961
brute force
remote
CVE-2024-32944
CVE-2024-36241
CVE-2024-5274
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8