Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web console vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2019-3638
Reflected Cross Site Scripting vulnerability in Administrators web console in McAfee Web Gateway (MWG) 7.8.x before 7.8.2.13 allows remote malicious users to collect sensitive information or execute commands with the MWG administrator's credentials via tricking the administr...
Mcafee Web Gateway
703
VMScore
CVE-2015-5692
admin_messages.php in the management console on Symantec Web Gateway (SWG) appliances with software prior to 5.2.2 DB 5.0.0.1277 allows remote authenticated users to execute arbitrary code by uploading a file with a safe extension and content type, and then leveraging an improper...
Symantec Web Gateway
NA
CVE-2023-20102
A vulnerability in the web-based management interface of Cisco Secure Network Analytics could allow an authenticated, remote malicious user to execute arbitrary code on the underlying operating system. This vulnerability is due to insufficient sanitization of user-provided data t...
Cisco Secure Network Analytics
Cisco Stealthwatch Management Console 2200 Firmware -
446
VMScore
CVE-2020-9315
** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** Oracle iPlanet Web Server 7.0.x has Incorrect Access Control for admingui/version URIs in the Administration console, as demonstrated by unauthenticated read access to encryption keys. NOTE: a related support policy can be found in the ww...
Oracle Iplanet Web Server
436
VMScore
CVE-2020-9314
** PRODUCT NOT SUPPORTED WHEN ASSIGNED ** Oracle iPlanet Web Server 7.0.x allows image injection in the Administration console via the productNameSrc parameter to an admingui URI. This issue exists because of an incomplete fix for CVE-2012-0516. NOTE: a related support policy can...
Oracle Iplanet Web Server
570
VMScore
CVE-2003-1363
The remote web management interface of Aprelium Technologies Abyss Web Server 1.1.2 and previous versions does not log connection attempts to the web management port (9999), which allows remote malicious users to mount brute force attacks on the administration console without det...
Aprelium Technologies Abyss Web Server
445
VMScore
CVE-2015-5184
Console: CORS headers set to allow all in Red Hat AMQ.
Redhat Jboss Enterprise Web Server 1.0.0
Redhat Amq
383
VMScore
CVE-2012-4597
Cross-site scripting (XSS) vulnerability in McAfee Email and Web Security (EWS) 5.5 through Patch 6 and 5.6 through Patch 3, and McAfee Email Gateway (MEG) 7.0.0 and 7.0.1, allows remote malicious users to inject arbitrary web script or HTML via vectors related to the McAfee Secu...
Mcafee Email And Web Security 5.6
Mcafee Email Gateway 7.0.1
Mcafee Email And Web Security 5.5
Mcafee Email Gateway 7.0.0
725
VMScore
CVE-2002-0544
Aprelium Abyss Web Server (abyssws) prior to 1.0.3 stores the administrative console password in plaintext in the abyss.conf file, which allows local users with access to the file to gain privileges.
Aprelium Technologies Abyss Web Server 1.0
1 EDB exploit
NA
CVE-2023-30771
Incorrect Authorization vulnerability in Apache Software Foundation Apache IoTDB.This issue affects the iotdb-web-workbench component on 0.13.3. iotdb-web-workbench is an optional component of IoTDB, providing a web console of the database. This problem is fixed from version 0.13...
Apache Iotdb Web Workbench 0.13.3
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »