Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
static vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2019-10307
A cross-site request forgery vulnerability in Jenkins Static Analysis Utilities Plugin 1.95 and previous versions in the DefaultGraphConfigurationView#doSave form handler method allowed malicious users to change the per-job default graph configuration for all users.
Jenkins Static Analysis Utilities
5.4
CVSSv3
CVE-2017-1000102
The Details view of some Static Analysis Utilities based plugins, was vulnerable to a persisted cross-site scripting vulnerability: Malicious users able to influence the input to these plugins, for example the console output which is parsed to extract build warnings (Warnings Plu...
Jenkins Static Analysis Utilities
6.5
CVSSv3
CVE-2019-10308
A missing permission check in Jenkins Static Analysis Utilities Plugin 1.95 and previous versions in the DefaultGraphConfigurationView#doSave form handler method allowed attackers with Overall/Read permission to change the per-job default graph configuration for all users.
Jenkins Static Analysis Utilities
5.4
CVSSv3
CVE-2020-2316
Jenkins Static Analysis Utilities Plugin 1.96 and previous versions does not escape the annotation message in tooltips, resulting in a stored cross-site scripting (XSS) vulnerability exploitable by attackers with Job/Configure permission.
Jenkins Static Analysis Utilities
5.4
CVSSv3
CVE-2023-6369
The Export WP Page to Static HTML/CSS plugin for WordPress is vulnerable to unauthorized access of data and modification of data due to a missing capability check on multiple AJAX actions in all versions up to, and including, 2.1.9. This makes it possible for authenticated attack...
Myrecorp Export Wp Page To Static Html\\/css
8.8
CVSSv3
CVE-2023-31077
Cross-Site Request Forgery (CSRF) vulnerability in ReCorp Export WP Page to Static HTML/CSS plugin <= 2.1.9 versions.
Myrecorp Export Wp Page To Static Html\\/css
6.5
CVSSv3
CVE-2023-30970
Gotham Table service and Forward App were found to be vulnerable to a Path traversal issue allowing an authenticated user to read arbitrary files on the file system.
Palantir Gotham Blackbird-witchcraft
Palantir Gotham Static-assets-servlet
6.1
CVSSv3
CVE-2022-27237
There is a cross-site scripting (XSS) vulnerability in an NI Web Server component installed with several NI products. Depending on the product(s) in use, remediation guidance includes: install SystemLink version 2021 R3 or later, install FlexLogger 2022 Q2 or later, install LabVI...
Ni Flexlogger 2021
Ni Systemlink 2020
Ni Systemlink 2022
Ni G Web Development Software 2021
Ni Labview 2021
Ni Static Test Software Suite
7.4
CVSSv3
CVE-2019-12621
A vulnerability in Cisco HyperFlex Software could allow an unauthenticated, remote malicious user to perform a man-in-the-middle attack. The vulnerability is due to insufficient key management. An attacker could exploit this vulnerability by obtaining a specific encryption key fo...
Cisco Hyperflex Hx220c M5 Firmware 3.0\\(1a\\)
Cisco Hyperflex Hx220c M5 Firmware 3.5\\(2a\\)
Cisco Hyperflex Hx240c M5 Firmware 3.0\\(1a\\)
Cisco Hyperflex Hx240c M5 Firmware 3.5\\(2a\\)
Cisco Hyperflex Hx220c Af M5 Firmware 3.5\\(2a\\)
Cisco Hyperflex Hx220c Af M5 Firmware 3.0\\(1a\\)
Cisco Hyperflex Hx240c Af M5 Firmware 3.0\\(1a\\)
Cisco Hyperflex Hx240c Af M5 Firmware 3.5\\(2a\\)
Cisco Hyperflex Hx220c Edge M5 Firmware 3.0\\(1a\\)
Cisco Hyperflex Hx220c Edge M5 Firmware 3.5\\(2a\\)
9.8
CVSSv3
CVE-2020-27125
A vulnerability in Cisco Security Manager could allow an unauthenticated, remote malicious user to access sensitive information on an affected system. The vulnerability is due to insufficient protection of static credentials in the affected software. An attacker could exploit thi...
Cisco Security Manager
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2024-5274
CVE-2020-17519
CVE-2024-35340
CVE-2021-47558
local
XML injection
CVE-2021-47519
CVE-2021-47543
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »