Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
r vulnerabilities and exploits
(subscribe to this query)
9.3
CVSSv2
CVE-2007-4750
Unspecified vulnerability in RemoteDocs R-Viewer prior to 1.6.3768 allows user-assisted remote malicious users to execute arbitrary code via a crafted RDZ archive in which the first file has an executable extension.
Data-vision Remotedocs R-viewer
1.9
CVSSv2
CVE-2007-4751
RemoteDocs R-Viewer prior to 1.6.3768 stores encrypted RDZ file data in unencrypted temporary files, which allows local users to obtain sensitive information by reading the temporary files.
Data-vision Remotedocs R-viewer
6.8
CVSSv2
CVE-2018-19878
An issue exists on Teltonika RTU950 R_31.04.89 devices. The application allows a user to login without limitation. For every successful login request, the application saves a session. A user can re-login without logging out, causing the application to store the session in memory....
Teltonika Rut950 Firmware R 31.04.89
6.5
CVSSv2
CVE-2018-2436
Executing transaction WRCK in SAP R/3 Enterprise Retail (EHP6) does not perform necessary authorization checks for an authenticated user, resulting in escalation of privileges.
Sap R/3 Enterprise Retail -
NA
CVE-2022-45699
Command injection in the administration interface in APSystems ECU-R version 5203 allows a remote unauthenticated malicious user to execute arbitrary commands as root using the timezone parameter.
Apsystems Ecu-r Firmware 5203
7.5
CVSSv2
CVE-2006-1781
PHP remote file inclusion vulnerability in functions.php in Circle R Monster Top List (MTL) 1.4 allows remote malicious users to execute arbitrary PHP code via a URL in the root_path parameter. NOTE: It was later reported that 1.4.2 and previous versions are affected.
Circle R Monster Top List
2 EDB exploits
3.6
CVSSv2
CVE-2000-0379
The Netopia R9100 router does not prevent authenticated users from modifying SNMP tables, even if the administrator has configured it to do so.
Netopia R-series Routers 4.6.2
1 EDB exploit
NA
CVE-2022-36634
An access control issue in ZKTeco ZKBioSecurity V5000 3.0.5_r allows malicious users to arbitrarily create admin users via a crafted HTTP request.
Zkteco Zkbiosecurity V5000 3.0.5.0 R
5
CVSSv2
CVE-2020-13896
The web interface of Maipu MP1800X-50 7.5.3.14(R) devices allows remote malicious users to obtain sensitive information via the form/formDeviceVerGet URI, such as system id, hardware model, hardware version, bootloader version, software version, software image file, compilation t...
Maipu Mp1800x-50 Firmware 7.5.3.14(r)
4.3
CVSSv2
CVE-2006-2643
Cross-site scripting (XSS) vulnerability in index.php in Monster Top List (MTL) 1.4 allows remote malicious users to inject arbitrary web script or HTML via the user_error_message parameter.
Circle R Monster Top List 1.4
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
logic flaw
CVE-2024-23692
CVE-2024-26229
CVE-2024-35255
CVE-2024-5835
CVE-2024-5837
XML external entity
dos
CVE-2024-5813
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »