Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anastasios monachos vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2015-2166
Directory traversal vulnerability in the Instance Monitor in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote malicious users to read arbitrary files via a ..%2f (dot dot encoded slash) in the default URI.
Ericsson Drutt Mobile Service Delivery Platform 6.0
Ericsson Drutt Mobile Service Delivery Platform 4.0
Ericsson Drutt Mobile Service Delivery Platform 5.0
1 EDB exploit
1 Github repository
NA
CVE-2014-8727
Multiple directory traversal vulnerabilities in F5 BIG-IP prior to 10.2.2 allow local users with the "Resource Administrator" or "Administrator" role to enumerate and delete arbitrary files via a .. (dot dot) in the name parameter to (1) tmui/Control/jspmap/tm...
F5 Big-ip Local Traffic Manager
1 EDB exploit
9.8
CVSSv3
CVE-2014-9611
Netsweeper prior to 4.0.5 allows remote malicious users to bypass authentication and create arbitrary accounts and policies via a request to webadmin/nslam/index.php.
Netsweeper Netsweeper
1 EDB exploit
NA
CVE-2015-2165
Multiple cross-site scripting (XSS) vulnerabilities in the Report Viewer in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4.x, 5.x, and 6.x allow remote malicious users to inject arbitrary web script or HTML via the (1) portal, (2) fromDate, (3) toDate, (4) fromTime, (5)...
Ericsson Drutt Mobile Service Delivery Platform 4.0
Ericsson Drutt Mobile Service Delivery Platform 5.0
Ericsson Drutt Mobile Service Delivery Platform 6.0
NA
CVE-2015-2167
Open redirect vulnerability in the 3PI Manager in Ericsson Drutt Mobile Service Delivery Platform (MSDP) 4, 5, and 6 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the url parameter to jsp/start-3pi-manager.jsp.
Ericsson Drutt Mobile Service Delivery Platform 4.0
Ericsson Drutt Mobile Service Delivery Platform 5.0
Ericsson Drutt Mobile Service Delivery Platform 6.0
NA
CVE-2012-4032
Open redirect vulnerability in the login page in WebsitePanel prior to 1.2.2.1 allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in ReturnUrl to Default.aspx.
Websitepanel Websitepanel 1.1.0
Websitepanel Websitepanel 1.0.2
Websitepanel Websitepanel 1.2.0
Websitepanel Websitepanel 1.1.2
Websitepanel Websitepanel 1.0.1
Websitepanel Websitepanel 1.0.0
Websitepanel Websitepanel
1 EDB exploit
9.8
CVSSv3
CVE-2014-9613
Multiple SQL injection vulnerabilities in Netsweeper prior to 2.6.29.10 allow remote malicious users to execute arbitrary SQL commands via the (1) login parameter to webadmin/auth/verification.php or (2) dpid parameter to webadmin/deny/index.php.
Netsweeper Netsweeper
1 EDB exploit
9.8
CVSSv3
CVE-2014-9618
The Client Filter Admin portal in Netsweeper prior to 3.1.10, 4.0.x prior to 4.0.9, and 4.1.x prior to 4.1.2 allows remote malicious users to bypass authentication and subsequently create arbitrary profiles via a showdeny action to the default URL.
Netsweeper Netsweeper 4.0.6
Netsweeper Netsweeper 4.0.7
Netsweeper Netsweeper 4.0.8
Netsweeper Netsweeper 4.1.0
Netsweeper Netsweeper 4.0.2
Netsweeper Netsweeper 4.0.4
Netsweeper Netsweeper
Netsweeper Netsweeper 4.0.0
Netsweeper Netsweeper 4.0.1
Netsweeper Netsweeper 4.0.3
Netsweeper Netsweeper 4.0.5
Netsweeper Netsweeper 4.1.1
1 EDB exploit
7.2
CVSSv3
CVE-2014-9619
Unrestricted file upload vulnerability in webadmin/ajaxfilemanager/ajaxfilemanager.php in Netsweeper prior to 3.1.10, 4.0.x prior to 4.0.9, and 4.1.x prior to 4.1.2 allows remote authenticated users with admin privileges on the Cloud Manager web console to execute arbitrary PHP c...
Netsweeper Netsweeper 4.0.7
Netsweeper Netsweeper 4.0.5
Netsweeper Netsweeper 4.0.3
Netsweeper Netsweeper 4.0.2
Netsweeper Netsweeper 4.0.1
Netsweeper Netsweeper 4.0.0
Netsweeper Netsweeper 4.0.8
Netsweeper Netsweeper 4.0.6
Netsweeper Netsweeper 4.0.4
Netsweeper Netsweeper
Netsweeper Netsweeper 4.1.1
Netsweeper Netsweeper 4.1.0
1 EDB exploit
NA
CVE-2014-9605
WebUpgrade in Netsweeper prior to 3.1.10, 4.0.x prior to 4.0.9, and 4.1.x prior to 4.1.2 allows remote malicious users to bypass authentication and create a system backup tarball, restart the server, or stop the filters on the server via a ' (single quote) character in the l...
Netsweeper Netsweeper
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
cross-site request forgery
unauthorized
CVE-2024-33925
reflected XSS
CVE-2023-51580
CVE-2023-51579
CVE-2015-2051
CVE-2023-51609
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »