Vulmon
Recent Vulnerabilities
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
By Recent Activity
Recent vulnerabilities and exploits
6.5
CVSSv2
CVE-2018-1058
A flaw was found in the way Postgresql allowed a user to modify the behavior of a query for other users. An attacker with a user account could use this flaw to execute code with the permissions of superuser in the database. Versions 9.3 through 10 are affected....
Postgresql Postgresql
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 17.10
Redhat Cloudforms 4.6
4 Github repositories available
7.5
CVSSv2
CVE-2020-16846
An issue was discovered in SaltStack Salt through 3002. Sending crafted web requests to the Salt API, with the SSH client enabled, can result in shell injection....
Saltstack Salt
Saltstack Salt 3001
2 Articles available
2.1
CVSSv2
CVE-2020-17490
The TLS module within SaltStack Salt through 3002 creates certificates with weak file permissions....
Saltstack Salt
Saltstack Salt 3001
2 Articles available
7.5
CVSSv2
CVE-2020-25592
In SaltStack Salt through 3002, salt-netapi improperly validates eauth credentials and tokens. A user can bypass authentication and invoke Salt SSH....
Saltstack Salt
Saltstack Salt 3001
1 Article available
7.5
CVSSv2
CVE 2019-9581
phpscheduleit Booked Scheduler 2.7.5 allows arbitrary file upload via the Favicon field, leading to execution of arbitrary Web/custom-favicon.php PHP code, because Presenters/Admin/ManageThemePresenter.php does not ensure an image file extension....
Twinkletoessoftware Booked 2.7.5
2 Github repositories available
7.5
CVSSv2
CVE-2018-0124
A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security protections, gain elevated privileges, and execute arbitrary code. The vulnerability is due to insecure key generation during application...
Cisco Unified Communications Domain Manager
4.3
CVSSv2
CVE-2019-9947
An issue was discovered in urllib2 in Python 2.x through 2.7.16 and urllib in Python 3.x through 3.7.3. CRLF injection is possible if the attacker controls a url parameter, as demonstrated by the first argument to urllib.request.urlopen with \r\n (specifically in the path...
Python Python
Python Python 2.7.16
2 Github repositories available
6.5
CVSSv2
CVE-2019-11539
In Pulse Secure Pulse Connect Secure version 9.0RX before 9.0R3.4, 8.3RX before 8.3R7.1, 8.2RX before 8.2R12.1, and 8.1RX before 8.1R15.1 and Pulse Policy Secure version 9.0RX before 9.0R3.2, 5.4RX before 5.4R7.1, 5.3RX before 5.3R12.1, 5.2RX before 5.2R12.1, and 5.1RX before...
Pulsesecure Pulse Connect Secure 8.1
Pulsesecure Pulse Connect Secure 8.1r1.0
Pulsesecure Pulse Connect Secure 8.2
Pulsesecure Pulse Connect Secure 8.2r1.0
Pulsesecure Pulse Connect Secure 8.2r1.1
Pulsesecure Pulse Connect Secure 8.2r2.0
Pulsesecure Pulse Connect Secure 8.2r3.0
Pulsesecure Pulse Connect Secure 8.2r3.1
Pulsesecure Pulse Connect Secure 8.2r4.0
Pulsesecure Pulse Connect Secure 8.2r4.1
Pulsesecure Pulse Connect Secure 8.2r5.0
Pulsesecure Pulse Connect Secure 8.2r5.1
Pulsesecure Pulse Connect Secure 8.2r6.0
Pulsesecure Pulse Connect Secure 8.2r7.0
Pulsesecure Pulse Connect Secure 8.2r7.1
Pulsesecure Pulse Connect Secure 8.2rx
Pulsesecure Pulse Connect Secure 8.3
Pulsesecure Pulse Connect Secure 8.3rx
Pulsesecure Pulse Connect Secure 9.0r1
Pulsesecure Pulse Connect Secure 9.0r2
Pulsesecure Pulse Connect Secure 9.0r2.1
Pulsesecure Pulse Connect Secure 9.0r3
Pulsesecure Pulse Connect Secure 9.0r3.1
Pulsesecure Pulse Connect Secure 9.0r3.2
Pulsesecure Pulse Connect Secure 9.0rx
Pulsesecure Pulse Policy Secure 5.1r1.0
Pulsesecure Pulse Policy Secure 5.1r1.1
Pulsesecure Pulse Policy Secure 5.1r2.0
Pulsesecure Pulse Policy Secure 5.1r2.1
Pulsesecure Pulse Policy Secure 5.1r3.0
Pulsesecure Pulse Policy Secure 5.1r3.2
Pulsesecure Pulse Policy Secure 5.1r4.0
Pulsesecure Pulse Policy Secure 5.1r5.0
Pulsesecure Pulse Policy Secure 5.1r6.0
Pulsesecure Pulse Policy Secure 5.1r7.0
Pulsesecure Pulse Policy Secure 5.1r8.0
Pulsesecure Pulse Policy Secure 5.1r9.0
Pulsesecure Pulse Policy Secure 5.1r9.1
Pulsesecure Pulse Policy Secure 5.1r10.0
Pulsesecure Pulse Policy Secure 5.1r11.0
Pulsesecure Pulse Policy Secure 5.1r11.1
Pulsesecure Pulse Policy Secure 5.1r12.0
Pulsesecure Pulse Policy Secure 5.1r12.1
Pulsesecure Pulse Policy Secure 5.1r13.0
Pulsesecure Pulse Policy Secure 5.1r14.0
Pulsesecure Pulse Policy Secure 5.2r1.0
Pulsesecure Pulse Policy Secure 5.2r2.0
Pulsesecure Pulse Policy Secure 5.2r3.0
Pulsesecure Pulse Policy Secure 5.2r3.2
Pulsesecure Pulse Policy Secure 5.2r4.0
Pulsesecure Pulse Policy Secure 5.2r5.0
Pulsesecure Pulse Policy Secure 5.2r6.0
Pulsesecure Pulse Policy Secure 5.2r7.0
Pulsesecure Pulse Policy Secure 5.2r7.1
Pulsesecure Pulse Policy Secure 5.2r8.0
Pulsesecure Pulse Policy Secure 5.2r9.0
Pulsesecure Pulse Policy Secure 5.2r9.1
Pulsesecure Pulse Policy Secure 5.2r10.0
Pulsesecure Pulse Policy Secure 5.2r11.0
Pulsesecure Pulse Policy Secure 5.2rx
Pulsesecure Pulse Policy Secure 5.3r1.0
Pulsesecure Pulse Policy Secure 5.3r1.1
Pulsesecure Pulse Policy Secure 5.3r2.0
Pulsesecure Pulse Policy Secure 5.3r3.0
Pulsesecure Pulse Policy Secure 5.3r3.1
Pulsesecure Pulse Policy Secure 5.3r4.0
Pulsesecure Pulse Policy Secure 5.3r4.1
Pulsesecure Pulse Policy Secure 5.3r5.0
Pulsesecure Pulse Policy Secure 5.3r5.1
Pulsesecure Pulse Policy Secure 5.3r5.2
Pulsesecure Pulse Policy Secure 5.3r6.0
Pulsesecure Pulse Policy Secure 5.3r7.0
Pulsesecure Pulse Policy Secure 5.3r8.0
Pulsesecure Pulse Policy Secure 5.3r8.1
Pulsesecure Pulse Policy Secure 5.3r8.2
Pulsesecure Pulse Policy Secure 5.3r9.0
Pulsesecure Pulse Policy Secure 5.3r10.
Pulsesecure Pulse Policy Secure 5.3r11.0
Pulsesecure Pulse Policy Secure 5.3r12.0
Pulsesecure Pulse Policy Secure 5.3rx
Pulsesecure Pulse Policy Secure 5.4r1
Pulsesecure Pulse Policy Secure 5.4r2
Pulsesecure Pulse Policy Secure 5.4r2.1
Pulsesecure Pulse Policy Secure 5.4r3
Pulsesecure Pulse Policy Secure 5.4r4
Pulsesecure Pulse Policy Secure 5.4r5
Pulsesecure Pulse Policy Secure 5.4r5.2
Pulsesecure Pulse Policy Secure 5.4r6
Pulsesecure Pulse Policy Secure 5.4r6.1
Pulsesecure Pulse Policy Secure 5.4r7
Pulsesecure Pulse Policy Secure 5.4rx
Pulsesecure Pulse Policy Secure 9.0r1
Pulsesecure Pulse Policy Secure 9.0r2
Pulsesecure Pulse Policy Secure 9.0r2.1
Pulsesecure Pulse Policy Secure 9.0r3
Pulsesecure Pulse Policy Secure 9.0r3.1
Pulsesecure Pulse Policy Secure 9.0rx
2 EDB exploits available
1 Metasploit module available
7 Github repositories available
6 Articles available
7.5
CVSSv2
CVE-2019-5464
A flawed DNS rebinding protection issue was discovered in GitLab CE/EE 10.2 and later in the `url_blocker.rb` which could result in SSRF where the library is utilized....
Gitlab Gitlab
1 Github repository available
4.3
CVSSv2
CVE-2011-2461
Cross-site scripting (XSS) vulnerability in the Adobe Flex SDK 3.x and 4.x before 4.6 allows remote attackers to inject arbitrary web script or HTML via vectors related to the loading of modules from different domains....
Adobe Flex Sdk 3.0
Adobe Flex Sdk 3.0.1
Adobe Flex Sdk 3.1
Adobe Flex Sdk 3.2
Adobe Flex Sdk 3.3
Adobe Flex Sdk 3.4
Adobe Flex Sdk 3.4.1
Adobe Flex Sdk 3.5
Adobe Flex Sdk 3.5a
Adobe Flex Sdk 3.6
Adobe Flex Sdk 4.0
Adobe Flex Sdk 4.1
Adobe Flex Sdk 4.5
Adobe Flex Sdk 4.5.1
10 Github repositories available
1 Article available
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2021-2109
NULL pointer dereference
CVE-2021-1300
local users
CVE-2021-1250
CVE-2020-6207
dos
CVE-2021-1249
CVE-2020-11214
« PREV
1
2
3
4
5
6
7
8
9
NEXT »