Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
harshit vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-23956
A user can supply malicious HTML and JavaScript code that will be executed in the client browser
Broadcom Symantec Siteminder Webagent 12.52
7.8
CVSSv3
CVE-2022-23909
There is an unquoted service path in Sherpa Connector Service (SherpaConnectorService.exe) 2020.2.20328.2050. This might allow a local user to escalate privileges by creating a "C:\Program Files\Sherpa Software\Sherpa.exe" file.
Gimmal Sherpa Connector Service 2020.2.20328.2050
1 Github repository
6.1
CVSSv3
CVE-2019-19368
A Reflected Cross Site Scripting exists in the Login page of Rumpus FTP Web File Manager 8.2.9.1. An attacker can exploit it by sending a crafted link to end users and can execute arbitrary Javascripts
Maxum Rumpus 8.2.9.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started