Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
an vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-5988
Stored cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the Management Page.
Anglers-net Cgi An-anlyzer
6.1
CVSSv3
CVE-2019-5989
DOM-based cross-site scripting vulnerability in Access analysis CGI An-Analyzer released in 2019 June 24 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the Analysis Object Page.
Anglers-net Cgi An-anlyzer
7.5
CVSSv3
CVE-2019-5990
Access analysis CGI An-Analyzer released in 2019 June 24 and previous versions allow remote malicious users to obtain a login password via HTTP referer.
Anglers-net Cgi An-anlyzer
NA
CVE-2009-3366
Directory traversal vulnerability in navigation.php in An image gallery 1.0 allows remote malicious users to list arbitrary directories via a .. (dot dot) in the path parameter.
Plohni An Image Gallery 1.0
1 EDB exploit
6.1
CVSSv3
CVE-2023-40752
There is a Cross Site Scripting (XSS) vulnerability in the "action" parameter of index.php in PHPJabbers Make an Offer Widget v1.0.
Phpjabbers Make An Offer Widget 1.0
9.8
CVSSv3
CVE-2023-40767
User enumeration is found in in PHPJabbers Make an Offer Widget v1.0. This issue occurs during password recovery, where a difference in messages could allow an malicious user to determine if the user is valid or not, enabling a brute force attack with valid users.
Phpjabbers Make An Offer Widget 1.0
NA
CVE-2007-0591
PHP remote file inclusion vulnerability in configure.php in Vu Le An Virtual Path (VirtualPath) 1.0 allows remote malicious users to execute arbitrary PHP code via a URL in the phpbb_root_path parameter.
Vu Le An Virtual Path 1.0
1 EDB exploit
NA
CVE-2004-0650
UploadServlet in Cisco Collaboration Server (CCS) running ServletExec prior to 3.0E allows remote malicious users to upload and execute arbitrary files via a direct call to the UploadServlet URL.
Newatlanta Servletexec 3.0
Newatlanta Servletexec 2.2
7.8
CVSSv3
CVE-2019-6026
Privilege escalation vulnerability in Multiple MOTEX products (LanScope Cat client program (MR) and LanScope Cat client program (MR)LanScope Cat detection agent (DA) prior to Ver.9.2.1.0, LanScope Cat server monitoring agent (SA, SAE) prior to Ver.9.2.2.0, LanScope An prior to Ve...
Motex Lanscope An
Motex Lanscope Cat Client Program
Motex Lanscope Cat Detection Agent
Motex Lanscope Cat Server Monitoring Agent
6.1
CVSSv3
CVE-2019-1700
A vulnerability in field-programmable gate array (FPGA) ingress buffer management for the Cisco Firepower 9000 Series with the Cisco Firepower 2-port 100G double-width network module (PID: FPR9K-DNM-2X100G) could allow an unauthenticated, adjacent malicious user to cause a denial...
Cisco Firepower 9000 Firmware 2.2\\(200.8\\)
1 Article
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
encryption
CVE-2024-4331
CVE-2024-26925
arbitrary code
CVE-2006-4304
CVE-2024-25458
CVE-2024-27077
reflected XSS
CVE-2024-4059
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »