Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dustin cobb vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2019-6714
An issue exists in BlogEngine.NET up to and including 3.3.6.0. A path traversal and Local File Inclusion vulnerability in PostList.ascx.cs can cause unauthenticated users to load a PostView.ascx component from a potentially untrusted location on the local filesystem. This is espe...
Blogengine Blogengine.net
1 EDB exploit
1 Github repository
6.1
CVSSv3
CVE-2019-11408
XSS in app/operator_panel/index_inc.php in the Operator Panel module in FusionPBX 4.4.3 allows remote unauthenticated malicious users to inject arbitrary JavaScript characters by placing a phone call using a specially crafted caller ID number. This can further lead to remote code...
Fusionpbx Fusionpbx 4.4.3
8.8
CVSSv3
CVE-2019-11409
app/operator_panel/exec.php in the Operator Panel module in FusionPBX 4.4.3 suffers from a command injection vulnerability due to a lack of input validation that allows authenticated non-administrative malicious users to execute commands on the host. This can further lead to remo...
Fusionpbx Fusionpbx 4.4.3
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started