Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
doing vulnerabilities and exploits
(subscribe to this query)
6.6
CVSSv3
CVE-2021-37690
TensorFlow is an end-to-end open source platform for machine learning. In affected versions when running shape functions, some functions (such as `MutableHashTableShape`) produce extra output information in the form of a `ShapeAndType` struct. The shapes embedded in this struct a...
Google Tensorflow
Google Tensorflow 2.5.0
Google Tensorflow 2.6.0
5.4
CVSSv3
CVE-2020-19048
Cross Site Scripting (XSS) in MyBB v1.8.20 allows remote malicious users to inject arbitrary web script or HTML via the "Title" field found in the "Add New Forum" page by doing an authenticated POST HTTP request to '/Upload/admin/index.php?module=forum-ma...
Mybb Mybb 1.8.20
5.4
CVSSv3
CVE-2020-19049
Cross Site Scripting (XSS) in MyBB v1.8.20 allows remote malicious users to inject arbitrary web script or HTML via the "Description" field found in the "Add New Forum" page by doing an authenticated POST HTTP request to '/Upload/admin/index.php?module=fo...
Mybb Mybb 1.8.20
6.5
CVSSv3
CVE-2022-47407
An issue exists in the fp_masterquiz (aka Master-Quiz) extension prior to 2.2.1, and 3.x prior to 3.5.1, for TYPO3. An attacker can continue the quiz of a different user. In doing so, the attacker can view that user's answers and modify those answers.
Master-quiz Project Master-quiz
5.4
CVSSv3
CVE-2020-18470
Stored cross-site scripting (XSS) vulnerability in the Name of application field found in the General Configuration page in Rukovoditel 2.4.1 allows remote malicious users to inject arbitrary web script or HTML via a crafted website name by doing an authenticated POST HTTP reques...
Rukovoditel Rukovoditel 2.4.1
8.8
CVSSv3
CVE-2020-11010
In Tortoise ORM prior to 0.15.23 and 0.16.6, various forms of SQL injection have been found for MySQL and when filtering or doing mass-updates on char/text fields. SQLite & PostgreSQL are only affected when filtering with contains, starts_with, or ends_with filters (and their...
Tortoise Orm Project Tortoise Orm
9.8
CVSSv3
CVE-2022-22794
Cybonet - PineApp Mail Relay Unauthenticated Sql Injection. Attacker can send a request to: /manage/emailrichment/userlist.php?CUSTOMER_ID_INNER=1 /admin/emailrichment/userlist.php?CUSTOMER_ID_INNER=1 /manage/emailrichment/usersunlist.php?CUSTOMER_ID_INNER=1 /admin/emailrichment/...
Cybonet Pineapp Mail Secure -
6.7
CVSSv3
CVE-2020-9105
Taurus-AN00B versions earlier than 10.1.0.156(C00E155R7P2) have an insufficient input validation vulnerability. Due to the input validation logic is incorrect, an attacker can exploit this vulnerability to access and modify the memory of the device by doing a series of operations...
Huawei Taurus-an00b Firmware
5.9
CVSSv3
CVE-2019-5253
E5572-855 with versions earlier than 8.0.1.3(H335SP1C233) has an improper authentication vulnerability. The device does not perform a sufficient authentication when doing certain operations, successful exploit could allow an malicious user to cause the device to reboot after laun...
Huawei E5572-855 Firmware
NA
CVE-2004-0054
Multiple vulnerabilities in the H.323 protocol implementation for Cisco IOS 11.3T up to and including 12.2T allow remote malicious users to cause a denial of service and possibly execute arbitrary code, as demonstrated by the NISCC/OUSPG PROTOS test suite for the H.225 protocol.
Cisco Ios 12.0t
Cisco Ios 12.1
Cisco Ios 12.1e
Cisco Ios 12.1t
Cisco Ios 12.0
Cisco Ios 12.0s
Cisco Ios 11.3t
Cisco Ios 12.2
Cisco Ios 12.2s
Cisco Ios 12.2t
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »