Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
metasploit vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv2
CVE-2015-5453
Watchguard XCS 9.2 and 10.0 before build 150522 allow remote authenticated users to execute arbitrary commands via shell metacharacters in the id parameter to ADMIN/mailqueue.spl.
Watchguard Xcs 9.2
Watchguard Xcs 10.0
1 EDB exploit
5
CVSSv2
CVE-2020-8657
An issue exists in EyesOfNetwork 5.3. The installation uses the same API key (hardcoded as EONAPI_KEY in include/api_functions.php for API version 2.4.2) by default for all installations, hence allowing an malicious user to calculate/guess the admin access token.
Eyesofnetwork Eyesofnetwork 5.3-0
1 EDB exploit
6.8
CVSSv2
CVE-2007-5699
Stack-based buffer overflow in eIQNetworks Enterprise Security Analyzer (ESA) 2.5 allows remote malicious users to execute arbitrary code via certain data on TCP port 10616 that results in a long argument to the SEARCHREPORT command, a different vector than CVE-2007-2059.
Eiqnetworks Enterprise Security Analyzer 2.5
1 EDB exploit
6.5
CVSSv2
CVE-2015-6967
Unrestricted file upload vulnerability in the My Image plugin in Nibbleblog prior to 4.0.5 allows remote administrators to execute arbitrary code by uploading a file with an executable extension, then accessing it via a direct request to the file in content/private/plugins/my_ima...
Nibbleblog Nibbleblog
1 EDB exploit
7 Github repositories
7.5
CVSSv2
CVE-2013-4211
A Code Execution Vulnerability exists in OpenX Ad Server 2.8.10 due to a backdoor in flowplayer-3.1.1.min.js library, which could let a remote malicious user execute arbitrary PHP code
Openx Openx 2.8.10
1 EDB exploit
6.5
CVSSv2
CVE-2017-16709
Crestron Airmedia AM-100 devices with firmware prior to 1.6.0 and AM-101 devices with firmware prior to 2.7.0 allows remote authenticated administrators to execute arbitrary code via unspecified vectors.
Crestron Airmedia Am-100 Firmware
Crestron Airmedia Am-101 Firmware
1 EDB exploit
6
CVSSv2
CVE-2004-1389
Unknown vulnerability in the Veritas NetBackup Administrative Assistant interface for NetBackup BusinesServer 3.4, 3.4.1, and 4.5, DataCenter 3.4, 3.4.1, and 4.5, Enterprise Server 5.1, and NetBackup Server 5.0 and 5.1, allows malicious users to execute arbitrary commands via the...
Veritas Netbackup 3.4.0
Veritas Netbackup 5.1
Veritas Netbackup 4.5.0
Veritas Netbackup 5.0
Veritas Netbackup 3.4.1
1 EDB exploit
7.6
CVSSv2
CVE-2001-0167
Buffer overflow in AT&T WinVNC (Virtual Network Computing) client 3.3.3r7 and previous versions allows remote malicious users to execute arbitrary commands via a long rfbConnFailed packet with a long reason string.
Att Winvnc
1 EDB exploit
7.5
CVSSv2
CVE-2011-4542
Hastymail2 2.1.1 before RC2 allows remote malicious users to execute arbitrary commands via the (1) rs or (2) rsargs[] parameter in a mailbox Drafts action to the default URI.
Hastymail Hastymail2 2.0
Hastymail Hastymail2
Hastymail Hastymail2 2.0.2
Hastymail Hastymail2 2.0.1
Hastymail Hastymail2 1.1
Hastymail Hastymail2 2.0.5
Hastymail Hastymail2 2.0.4
Hastymail Hastymail2 2.0.3
Hastymail Hastymail2 1.01
Hastymail Hastymail2 1.0
1 EDB exploit
6.5
CVSSv2
CVE-2013-3628
Zabbix 2.0.9 has an Arbitrary Command Execution Vulnerability
Zabbix Zabbix 2.0.9
1 EDB exploit
1 Github repository
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-30310
CVE-2024-21683
CVE-2024-22187
chrome
deserialization
XPath injection
CVE-2024-27842
denial of service
CVE-2024-24851
google
CVE-2024-35400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »