Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rapid7 vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2012-6493
Cross-site request forgery (CSRF) vulnerability in Rapid7 Nexpose Security Console prior to 5.5.4 allows remote malicious users to hijack the authentication of unspecified victims for requests that delete scan data and sites via a request to data/site/delete.
Rapid7 Nexpose
Rapid7 Nexpose 5.5.1
Rapid7 Nexpose 5.4.12
Rapid7 Nexpose 5.4.11
Rapid7 Nexpose 5.4.10
Rapid7 Nexpose 5.4.5
Rapid7 Nexpose 5.4.4
Rapid7 Nexpose 5.4.3
Rapid7 Nexpose 5.4.2
Rapid7 Nexpose 5.4.9
Rapid7 Nexpose 5.4.7
Rapid7 Nexpose 5.4
Rapid7 Nexpose 5.4.8
Rapid7 Nexpose 5.4.6
Rapid7 Nexpose 5.4.1
1 EDB exploit
5
CVSSv2
CVE-2013-5211
The monlist feature in ntp_request.c in ntpd in NTP prior to 4.2.7p26 allows remote malicious users to cause a denial of service (traffic amplification) via forged (1) REQ_MON_GETLIST or (2) REQ_MON_GETLIST_1 requests, as exploited in the wild in December 2013.
Opensuse Opensuse 11.4
Ntp Ntp 4.2.7
Ntp Ntp
Oracle Linux 6
Oracle Linux 7
1 EDB exploit
9 Github repositories
3.5
CVSSv2
CVE-2013-3617
The XML API in Openbravo ERP 2.5, 3.0, and previous versions allows remote authenticated users to read arbitrary files via an XML document with an external entity declaration in conjunction with an entity reference to /ws/dal/ADUser or other /ws/dal/XXX interfaces, related to an ...
Openbravo Openbravo Erp 2.50
Openbravo Openbravo Erp
Openbravo Openbravo Erp 2.40
1 EDB exploit
6
CVSSv2
CVE-2013-3631
NAS4Free 9.1.0.1.804 and previous versions allows remote authenticated users to execute arbitrary PHP code via a request to exec.php, aka the "Advanced | Execute Command" feature. NOTE: this issue might not be a vulnerability, since it appears to be part of legitimate, ...
Nas4free Nas4free 9.1.0.1.798
Nas4free Nas4free
1 EDB exploit
8.5
CVSSv2
CVE-2013-0136
Multiple directory traversal vulnerabilities in the EditDocument servlet in the Frontend in Mutiny prior to 5.0-1.11 allow remote authenticated users to upload and execute arbitrary programs, read arbitrary files, or cause a denial of service (file deletion or renaming) via (1) t...
Mutiny Mutiny Virtual Appliance -
Mutiny Mutiny
Mutiny Mutiny 5.0-1.00
Mutiny Mutiny Appliance -
1 EDB exploit
7.8
CVSSv2
CVE-2013-0229
The ProcessSSDPRequest function in minissdp.c in the SSDP handler in MiniUPnP MiniUPnPd prior to 1.4 allows remote malicious users to cause a denial of service (service crash) via a crafted request that triggers a buffer over-read.
Miniupnp Project Miniupnpd
Miniupnp Project Miniupnpd 1.2
Miniupnp Project Miniupnpd 1.1
Miniupnp Project Miniupnpd 1.0
2 EDB exploits
1 Github repository
10
CVSSv2
CVE-2012-5958
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) prior to 1.6.18 allows remote malicious users to execute arbitrary code via a UDP p...
Libupnp Project Libupnp 1.6.12
Libupnp Project Libupnp 1.6.11
Libupnp Project Libupnp 1.6.4
Libupnp Project Libupnp 1.6.3
Libupnp Project Libupnp 1.4.3
Libupnp Project Libupnp 1.4.2
Libupnp Project Libupnp 1.6.16
Libupnp Project Libupnp 1.6.15
Libupnp Project Libupnp 1.6.8
Libupnp Project Libupnp 1.6.7
Libupnp Project Libupnp 1.6.0
Libupnp Project Libupnp 1.4.7
Libupnp Project Libupnp 1.6.14
Libupnp Project Libupnp 1.6.13
Libupnp Project Libupnp 1.6.6
Libupnp Project Libupnp 1.6.5
Libupnp Project Libupnp 1.4.6
Libupnp Project Libupnp 1.4.5
Libupnp Project Libupnp 1.4.4
Libupnp Project Libupnp
Libupnp Project Libupnp 1.6.10
Libupnp Project Libupnp 1.6.9
1 EDB exploit
1 Github repository
10
CVSSv2
CVE-2012-5959
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) prior to 1.6.18 allows remote malicious users to execute arbitrary code via a long ...
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.11
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.10
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.2
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.1
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.2
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.1
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.15
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.14
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.6
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.5
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.6
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.5
Portable Sdk For Upnp Project Portable Sdk For Upnp
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.16
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.9
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.8
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.7
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.0
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.7
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.0
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.13
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.12
1 EDB exploit
2 Github repositories
10
CVSSv2
CVE-2012-5960
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) prior to 1.6.18 allows remote malicious users to execute arbitrary code via a long ...
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.13
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.12
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.4
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.3
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.4
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.3
Portable Sdk For Upnp Project Portable Sdk For Upnp
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.16
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.8
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.7
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.0
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.7
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.0
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.11
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.10
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.9
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.2
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.1
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.2
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.4.1
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.15
Portable Sdk For Upnp Project Portable Sdk For Upnp 1.6.14
1 EDB exploit
1 Github repository
10
CVSSv2
CVE-2012-5961
Stack-based buffer overflow in the unique_service_name function in ssdp/ssdp_server.c in the SSDP parser in the portable SDK for UPnP Devices (aka libupnp, formerly the Intel SDK for UPnP devices) 1.3.1 allows remote malicious users to execute arbitrary code via a long UDN (aka d...
Libupnp Project Libupnp 1.3.1
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »