Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
v9 vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-19865
Atos Unify OpenScape UC Application V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows XSS. An attacker could exploit this by convincing an authenticated user to inject arbitrary JavaScript code in the Profile Name field. A browser would execute this stored XSS...
Atos Unify Openscape Uc Web Client 1.0
7.5
CVSSv3
CVE-2019-19866
Atos Unify OpenScape UC Web Client V9 before version V9 R4.31.0 and V10 before version V10 R0.6.0 allows remote malicious users to obtain sensitive information. By iterating the value of conferenceId to getMailFunction in the JSON API, one can enumerate all conferences scheduled ...
Atos Unify Openscape Uc Web Client 9.0
Atos Unify Openscape Uc Web Client 10.0
7
CVSSv3
CVE-2019-18988
TeamViewer Desktop up to and including 14.7.1965 allows a bypass of remote-login access control because the same key is used for different customers' installations. It used a shared AES key for all installations since at least as far back as v7.0.43148, and used it for at le...
Teamviewer Teamviewer
6 Github repositories
6.5
CVSSv3
CVE-2012-6341
An Information Disclosure vulnerability exists in the my config file in NEtGEAR WGR614 v7 and v9, which could let a malicious user recover all previously used passwords on the device, for both the control panel and WEP/WPA/WPA2, in plaintext. This is a different issue than CVE-20...
Netgear Wgr614v9 Firmware -
Netgear Wgr614v7 Firmware -
4.6
CVSSv3
CVE-2012-6340
An Authentication vulnerability exists in NETGEAR WGR614 v7 and v9 due to a hardcoded credential used for serial programming, a related issue to CVE-2006-1002.
Netgear Wgr614v9 Firmware -
Netgear Wgr614v7 Firmware -
7.2
CVSSv3
CVE-2019-19848
An issue exists in TYPO3 prior to 8.7.30, 9.x prior to 9.5.12, and 10.x prior to 10.2.2. It has been discovered that the extraction of manually uploaded ZIP archives in Extension Manager is vulnerable to directory traversal. Admin privileges are required in order to exploit this ...
Typo3 Typo3
8.8
CVSSv3
CVE-2019-1229
An elevation of privilege vulnerability exists in Dynamics On-Premise v9, aka 'Dynamics On-Premise Elevation of Privilege Vulnerability'.
Microsoft Dynamics 365 9.0
1 Article
5.4
CVSSv3
CVE-2018-1541
IBM WebSphere Commerce Enterprise V7, V8, and V9 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted session...
Ibm Websphere Commerce
Ibm Websphere Commerce 7.0.0.9
9.8
CVSSv3
CVE-2018-13861
Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 09:10:14 (FW 303) allows unauthorized remote malicious users to reboot or execute other functions via the "/xml/system/control.xml" URL, using the GET request "?action=reboot" for example.
Trivum Webtouch Setup V9 Firmware 2.53
9.8
CVSSv3
CVE-2018-13862
Touchpad / Trivum WebTouch Setup V9 V2.53 build 13163 of Apr 6 2018 09:10:14 (FW 303) allow unauthorized remote malicious users to reset the authentication via the "/xml/system/setAttribute.xml" URL, using the GET request "?id=0&attr=protectAccess&newValue=...
Trivum Webtouch Setup V9 Firmware 2.53
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »