Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
anonymous vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2000-0114
Frontpage Server Extensions allows remote malicious users to determine the name of the anonymous account via an RPC POST request to shtml.dll in the /_vti_bin/ virtual directory.
Microsoft Internet Information Server 3.0
Microsoft Internet Information Server 4.0
9.8
CVSSv3
CVE-2023-43696
Improper Access Control in SICK APU allows an unprivileged remote malicious user to download as well as upload arbitrary files via anonymous access to the FTP server.
Sick Apu0200 Firmware
7.5
CVSSv3
CVE-2023-1405
The Formidable Forms WordPress plugin prior to 6.2 unserializes user input, which could allow anonymous users to perform PHP Object Injection when a suitable gadget is present.
Strategy11 Formidable Forms
8.8
CVSSv3
CVE-2016-11056
Certain NETGEAR devices are affected by anonymous root access. This affects ReadyNAS Surveillance 1.1.1-3-armel and previous versions and ReadyNAS Surveillance 1.4.1-3-amd64 and previous versions.
Netgear Readynas Surveillance
NA
CVE-2006-6724
BolinTech Dream FTP Server 1.02 allows remote authenticated users, including anonymous users, to cause a denial of service (application crash) via a certain invalid PORT command.
Bolintech Dream Ftp Server 1.02
1 EDB exploit
7.5
CVSSv3
CVE-2021-22200
An issue has been discovered in GitLab CE/EE affecting all versions starting with 12.6. Under a special condition it was possible to access data of an internal repository through a public project fork as an anonymous user.
Gitlab Gitlab
Gitlab Gitlab 13.10.0
8.2
CVSSv3
CVE-2016-6105
IBM Tivoli Key Lifecycle Manager 2.5 and 2.6 do not perform an authentication check for a critical resource or functionality allowing anonymous users access to protected areas.
Ibm Security Key Lifecycle Manager 2.5.0
Ibm Security Key Lifecycle Manager 2.5.0.1
Ibm Security Key Lifecycle Manager 2.6.0
Ibm Security Key Lifecycle Manager 2.6.0.1
Ibm Security Key Lifecycle Manager 2.5.0.4
Ibm Security Key Lifecycle Manager 2.5.0.5
Ibm Security Key Lifecycle Manager 2.5.0.2
Ibm Security Key Lifecycle Manager 2.5.0.3
Ibm Security Key Lifecycle Manager 2.6.0.2
Ibm Security Key Lifecycle Manager 2.5.0.0
Ibm Security Key Lifecycle Manager 2.5.0.6
Ibm Security Key Lifecycle Manager 2.5.0.7
NA
CVE-2007-4494
The tipafriend function in eZ publish prior to 3.8.9, and 3.9 prior to 3.9.3, does not limit access by anonymous users, which allows remote malicious users to conduct spam attacks.
Ez Ez Publish 3.9.1
Ez Ez Publish 3.9.2
Ez Ez Publish
Ez Ez Publish 3.9.0
NA
CVE-2002-1738
Alt-N Technologies MDaemon 5.0.5.0 and previous versions creates a default MDaemon mail account with a password of MServer, which could allow remote malicious users to send anonymous email.
Alt-n Mdaemon 5.0.2
Alt-n Mdaemon 5.0.3
Alt-n Mdaemon 5.0
Alt-n Mdaemon 5.0.1
Alt-n Mdaemon 5.0.4
Alt-n Mdaemon 5.0.5
5.3
CVSSv3
CVE-2021-39981
Chang Lian application has a vulnerability which can be maliciously exploited to hide the calling number.Successful exploitation of this vulnerability allows you to make an anonymous call.
Huawei Harmonyos 2.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »