Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

Recent vulnerabilities and exploits

4.3
CVSSv2
CVE-2020-9496
XML-RPC request are vulnerable to unsafe deserialization and Cross-Site Scripting issues in Apache OFBiz 17.12.03...
Apache Ofbiz 17.12.03
5
CVSSv2
CVE-2017-10271
Vulnerability in the Oracle WebLogic Server component of Oracle Fusion Middleware (subcomponent: WLS Security). Supported versions that are affected are 10.3.6.0.0, 12.1.3.0.0, 12.2.1.1.0 and 12.2.1.2.0. Easily exploitable vulnerability allows unauthenticated attacker with...
Oracle Weblogic Server 10.3.6.0.0Oracle Weblogic Server 12.2.1.1.0Oracle Weblogic Server 12.1.3.0.0Oracle Weblogic Server 12.2.1.2.0
NA
CVE-2021-32813
Traefik is an HTTP reverse proxy and load balancer. Prior to version 2.4.13, there exists a potential header vulnerability in Traefik's handling of the Connection header. Active exploitation of this issue is unlikely, as it requires that a removed header would lead to a...
NA
CVE-2021-33403
SC-RCVD A Multi-Granularity Method for Restructured Cloning Vulnerability Detection in Ethereum Smart Contracts CVE We have reported vulnerabilities detected by SC-RCVD to CVE. And we have obtained CVEs such as CVE-2021-33403, CVE-2021-34270, CVE-2021-34272 ,CVE-2021-34273 and...
NA
CVE-2021-34270
SC-RCVD A Multi-Granularity Method for Restructured Cloning Vulnerability Detection in Ethereum Smart Contracts CVE We have reported vulnerabilities detected by SC-RCVD to CVE. And we have obtained CVEs such as CVE-2021-33403, CVE-2021-34270, CVE-2021-34272 ,CVE-2021-34273 and...
NA
CVE-2020-19302
An arbitrary file upload vulnerability in the avatar upload function of vaeThink v1.0.1 allows attackers to open a webshell via changing uploaded file suffixes to ".php"....
NA
CVE-2021-38084
An issue was discovered in the POP3 component of Courier Mail Server before 1.1.5. Meddler-in-the-middle attackers can pipeline commands after the POP3 STLS command, injecting plaintext commands into an encrypted user session....
NA
CVE-2021-33335
Privilege escalation vulnerability in Liferay Portal 7.0.3 through 7.3.4, and Liferay DXP 7.1 before fix pack 20, and 7.2 before fix pack 9 allows remote authenticated users with permission to update/edit users to take over a company administrator user account by editing the...
NA
CVE-2021-34272
SC-RCVD A Multi-Granularity Method for Restructured Cloning Vulnerability Detection in Ethereum Smart Contracts CVE We have reported vulnerabilities detected by SC-RCVD to CVE. And we have obtained CVEs such as CVE-2021-33403, CVE-2021-34270, CVE-2021-34272 ,CVE-2021-34273 and...
NA
CVE-2020-19301
A vulnerability in the vae_admin_rule database table of vaeThink v1.0.1 allows attackers to execute arbitrary code via a crafted payload in the condition parameter....
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-36542NULL pointer dereferenceCVE-2021-3490CVE-2021-36934code injectionSSRFCVE-2021-34632CVE-2021-33325CVE-2021-27503
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook