Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-1981
Unspecified vulnerability in the Highly Interactive Client component in Siebel Product Suite 7.5.3, 7.7.2, 7.8.2, 8.0.0.5, and 8.1.0 allows local users to affect confidentiality and integrity via unknown vectors.
Oracle Siebel Enterprise Suite 7.5.3
Oracle Siebel Enterprise Suite 7.7.2
Oracle Siebel Enterprise Suite 7.8.2
Oracle Siebel Enterprise Suite 8.0.0.5
Oracle Siebel Enterprise Suite 8.1.0
NA
CVE-2009-1990
Unspecified vulnerability in the Business Intelligence Enterprise Edition component in Oracle Application Server 10.1.3.4.1 allows local users to affect confidentiality via unknown vectors.
Oracle Application Server 10.1.3.4.1
9
CVSSv3
CVE-2023-41896
Home assistant is an open source home automation. Whilst auditing the frontend code to identify hidden parameters, Cure53 detected `auth_callback=1`, which is leveraged by the WebSocket authentication logic in tandem with the `state` parameter. The state parameter contains the `h...
Home-assistant Home-assistant
Home-assistant Home-assistant-js-websocket
NA
CVE-2009-1992
Unspecified vulnerability in the Core RDBMS component in Oracle Database 9.2.0.8, 10.1.0.5, and 10.2.0.4 allows remote malicious users to affect confidentiality, integrity, and availability via unknown vectors.
Oracle Database Server 9.2.0.8
Oracle Database Server 10.1.0.5
Oracle Database Server 10.2.0.4
NA
CVE-2002-1315
Cross-site scripting (XSS) vulnerability in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows remote malicious users to execute web script or HTML as the iPlanet administrator by injecting the desired script into error logs, and possibly escalating privileges by usin...
Iplanet Iplanet Web Server 4.1
Iplanet Iplanet Web Server 4.1 Sp1
Iplanet Iplanet Web Server 4.1 Sp2
Iplanet Iplanet Web Server 4.1 Sp3
Iplanet Iplanet Web Server 4.1 Sp4
Iplanet Iplanet Web Server 4.1 Sp5
Iplanet Iplanet Web Server 4.1 Sp6
Iplanet Iplanet Web Server 4.1 Sp7
Iplanet Iplanet Web Server 4.1 Sp8
Iplanet Iplanet Web Server 4.1 Sp9
Iplanet Iplanet Web Server 4.1 Sp10
Iplanet Iplanet Web Server 4.1 Sp11
NA
CVE-2009-1997
Unspecified vulnerability in the Authentication component in Oracle Database 10.2.0.3 and 11.1.0.7 allows remote malicious users to affect confidentiality via unknown vectors.
Oracle Database Server 10.2.0.3
Oracle Database Server 11.1.0.7
4.3
CVSSv3
CVE-2023-41900
Jetty is a Java based web server and servlet engine. Versions 9.4.21 up to and including 9.4.51, 10.0.15, and 11.0.15 are vulnerable to weak authentication. If a Jetty `OpenIdAuthenticator` uses the optional nested `LoginService`, and that `LoginService` decides to revoke an alre...
Eclipse Jetty
Debian Debian Linux 11.0
Debian Debian Linux 12.0
NA
CVE-2009-1999
Unspecified vulnerability in the Business Intelligence Enterprise Edition component in unspecified Oracle Application Server versions allows remote malicious users to affect integrity via unknown vectors.
Oracle Application Server
8.1
CVSSv3
CVE-2009-20001
An issue exists in MantisBT prior to 2.24.5. It associates a unique cookie string with each user. This string is not reset upon logout (i.e., the user session is still considered valid and active), allowing an attacker who somehow gained access to a user's cookie to login as...
Mantisbt Mantisbt
NA
CVE-2002-1316
importInfo in the Admin Server for iPlanet WebServer 4.x, up to SP11, allows the web administrator to execute arbitrary commands via shell metacharacters in the dir parameter, and possibly allows remote malicious users to exploit this vulnerability via a separate XSS issue (CVE-2...
Iplanet Iplanet Web Server 4.1
Iplanet Iplanet Web Server 4.1 Sp1
Iplanet Iplanet Web Server 4.1 Sp2
Iplanet Iplanet Web Server 4.1 Sp3
Iplanet Iplanet Web Server 4.1 Sp4
Iplanet Iplanet Web Server 4.1 Sp5
Iplanet Iplanet Web Server 4.1 Sp6
Iplanet Iplanet Web Server 4.1 Sp7
Iplanet Iplanet Web Server 4.1 Sp8
Iplanet Iplanet Web Server 4.1 Sp9
Iplanet Iplanet Web Server 4.1 Sp10
Iplanet Iplanet Web Server 4.1 Sp11
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SQL injection
CVE-2024-52320
SQL
logic flaw
CVE-2024-6387
CVE-2024-11457
CVE-2024-11329
CVE-2024-50404
CVE-2023-48788
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »