Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-45171
An issue exists in LIVEBOX Collaboration vDesk through v018. An Unrestricted Upload of a File with a Dangerous Type can occur under the vShare web site section. A remote user, authenticated to the product, can arbitrarily upload potentially dangerous files without restrictions.
NA
CVE-2023-46694
Vtenext 21.02 allows an authenticated malicious user to upload arbitrary files, potentially enabling them to execute remote commands. This flaw exists due to the application's failure to enforce proper authentication controls when accessing the Ckeditor file manager function...
NA
CVE-2024-35510
An arbitrary file upload vulnerability in /dede/file_manage_control.php of DedeCMS v5.7.114 allows malicious users to execute arbitrary code via uploading a crafted file.
NA
CVE-2023-30310
An issue discovered in Comfast Comfast CF-616AC routers allows malicious users to hijack TCP sessions which could lead to a denial of service.
NA
CVE-2024-35582
A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Department input field.
NA
CVE-2024-35581
A cross-site scripting (XSS) vulnerability in Sourcecodester Laboratory Management System v1.0 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload injected into the Borrower Name input field.
NA
CVE-2023-30309
An issue discovered in D-Link DI-7003GV2 routers allows malicious users to hijack TCP sessions which could lead to a denial of service.
NA
CVE-2023-30313
An issue discovered in Wavlink QUANTUM D2G routers allows malicious users to hijack TCP sessions which could lead to a denial of service.
NA
CVE-2023-30311
An issue discovered in H3C Magic R365 and H3C Magic R100 routers allows malicious users to hijack TCP sessions which could lead to a denial of service.
NA
CVE-2023-43849
Incorrect access control in firmware upgrade function of web interface in Aten PE6208 2.3.228 and 2.4.232 allows remote authenticated users to submit a firmware image via HTTP POST requests. This may result in DoS or remote code execution.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4956
validation
CVE-2024-35221
remote attackers
CVE-2023-30309
CVE-2024-36112
CVE-2024-23109
CVE-2023-43850
stored XSS
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »