Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
access vulnerabilities and exploits
(subscribe to this query)
3.5
CVSSv2
CVE-2021-38895
IBM Security Verify 10.0.0, 10.0.1.0, and 10.0.2.0 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sessi...
Ibm Security Verify Access 10.0.0
Ibm Security Verify Access 10.0.1.0
Ibm Security Verify Access 10.0.2.0
7.5
CVSSv2
CVE-2019-6716
An unauthenticated Insecure Direct Object Reference (IDOR) in Wicket Core in LogonBox Nervepoint Access Manager 2013 through 2017 allows a remote malicious user to enumerate internal Active Directory usernames and group names, and alter back-end server jobs (backup and synchroniz...
Logonbox Nervepoint Access Manager 1.2
Logonbox Nervepoint Access Manager 1.3
Logonbox Nervepoint Access Manager 1.4
2 Github repositories
4.3
CVSSv2
CVE-2010-3018
RSA Access Manager Server 5.5.3 prior to 5.5.3.172, 6.0.4 prior to 6.0.4.53, and 6.1 prior to 6.1.2.01 does not properly perform cache updates, which allows remote malicious users to obtain sensitive information via unspecified vectors.
Rsa Access Manager Server 6.0.4
Rsa Access Manager Server 5.5.3
Rsa Access Manager Server 6.1
6.8
CVSSv2
CVE-2020-1582
A remote code execution vulnerability exists in Microsoft Access software when the software fails to properly handle objects in memory. An attacker who successfully exploited the vulnerability could run arbitrary code in the context of the current user. If the current user is log...
Microsoft Access 2013
Microsoft Access 2016
Microsoft Access 2010
Microsoft Office 2019
Microsoft 365 Apps -
10
CVSSv2
CVE-2015-8098
F5 BIG-IP APM 11.4.1 prior to 11.4.1 HF9, 11.5.x prior to 11.5.3, and 11.6.0 prior to 11.6.0 HF4 allow remote malicious users to cause a denial of service or execute arbitrary code via unspecified vectors related to processing a Citrix Remote Desktop connection through a virtual ...
F5 Big-ip Access Policy Manager 11.5.1
F5 Big-ip Access Policy Manager 11.6.0
F5 Big-ip Access Policy Manager 11.2.0
F5 Big-ip Access Policy Manager 11.2.1
F5 Big-ip Access Policy Manager 11.4.0
F5 Big-ip Access Policy Manager 11.3.0
F5 Big-ip Access Policy Manager 11.5.0
NA
CVE-2022-38059
Cross-Site Request Forgery (CSRF) vulnerability in Alexey Trofimov's Access Code Feeder plugin <= 1.0.3 at WordPress.
Access Code Feeder Project Access Code Feeder
NA
CVE-2023-43870
When installing the Net2 software a root certificate is installed into the trusted store. A potential hacker could access the installer batch file or reverse engineer the source code to gain access to the root certificate password. Using the root certificate and password they cou...
Paxton-access Net2 6.07
Paxton-access Net2
7.5
CVSSv2
CVE-2005-1067
Vulnerability in Access_user Class prior to 1.75 allows local users to gain access as other users via the password "new".
Access User Class Access User Class 1.6
5
CVSSv2
CVE-2003-0415
Remote PC Access Server 2.2 allows remote malicious users to cause a denial of service (crash) by receiving packets from the server and sending them back to the server.
Access-remote-pc.com Remote Pc Access 2.2
6.8
CVSSv2
CVE-2011-5328
The user-access-manager plugin prior to 1.2 for WordPress has CSRF.
User Access Manager Project User Access Manager
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »