Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
arbitrary code vulnerabilities and exploits
(subscribe to this query)
9
CVSSv2
CVE-2014-7884
Multiple unspecified vulnerabilities in HP ArcSight Logger prior to 6.0P1 have unknown impact and remote authenticated attack vectors.
Hp Arcsight Logger 6.0
1 EDB exploit
7.5
CVSSv2
CVE-2001-0400
nph-maillist.pl allows remote malicious users to execute arbitrary commands via shell metacharacters ("`") in the email address.
Matt Tourtillott Nph-maillist 3.0
Matt Tourtillott Nph-maillist 3.5
1 EDB exploit
6
CVSSv2
CVE-2012-1826
dotCMS 1.9 prior to 1.9.5.1 allows remote authenticated users to execute arbitrary Java code via a crafted (1) XSLT or (2) Velocity template.
Dotcms Dotcms 1.9.2.1
Dotcms Dotcms 1.9
6.8
CVSSv2
CVE-2008-1585
Apple QuickTime prior to 7.5 uses the url.dll!FileProtocolHandler handler for unrecognized URIs in qt:next attributes within SMIL text in video files, which sends these URIs to explorer.exe and thereby allows remote malicious users to execute arbitrary programs, as originally dem...
Apple Quicktime
NA
CVE-2023-42222
WebCatalog prior to 49.0 is vulnerable to Incorrect Access Control. WebCatalog calls the Electron shell.openExternal function without verifying that the URL is for an http or https resource, in some circumstances.
Webcatalog Webcatalog
1 Github repository
6.8
CVSSv2
CVE-2011-2657
Directory traversal vulnerability in the LaunchProcess function in the LaunchHelp.HelpLauncher.1 ActiveX control in LaunchHelp.dll in AdminStudio in Novell ZENworks Configuration Management (ZCM) 10.2, 10.3, and 11 SP1 allows remote malicious users to execute arbitrary commands v...
Novell Zenworks Configuration Management 10.2
Novell Zenworks Configuration Management 10.3
Novell Zenworks Configuration Management 11
1 EDB exploit
7.2
CVSSv2
CVE-2019-20357
A Persistent Arbitrary Code Execution vulnerability exists in the Trend Micro Security 2020 (v160 and 2019 (v15) consumer familiy of products which could potentially allow an attacker the ability to create a malicious program to escalate privileges and attain persistence on a vul...
Trendmicro Antivirus \\+ Security 2019 15.0
Trendmicro Antivirus \\+ Security 2020 16.0
Trendmicro Internet Security 2019 15.0
Trendmicro Internet Security 2020 16.0
Trendmicro Maximum Security 2019 15.0
Trendmicro Maximum Security 2020 16.0
Trendmicro Premium Security 2019 15.0
Trendmicro Premium Security 2020 16.0
10
CVSSv2
CVE-2020-5847
Unraid up to and including 6.8.0 allows Remote Code Execution.
Unraid Unraid
1 Github repository
5
CVSSv2
CVE-2020-5849
Unraid 6.8.0 allows authentication bypass.
Unraid Unraid 6.8.0
1 Github repository
10
CVSSv2
CVE-2013-4495
The send_the_mail function in server/svr_mail.c in Terascale Open-Source Resource and Queue Manager (aka TORQUE Resource Manager) prior to 4.2.6 allows remote malicious users to execute arbitrary commands via shell metacharacters in the email (-M switch) to qsub.
Adaptivecomputing Torque Resource Manager
Adaptivecomputing Torque Resource Manager 4.1.5.1
Adaptivecomputing Torque Resource Manager 4.1.3
Adaptivecomputing Torque Resource Manager 3.0.4
Adaptivecomputing Torque Resource Manager 3.0.3
Adaptivecomputing Torque Resource Manager 2.5.6
Adaptivecomputing Torque Resource Manager 2.5.5
Adaptivecomputing Torque Resource Manager 2.5.10
Adaptivecomputing Torque Resource Manager 2.5.1
Adaptivecomputing Torque Resource Manager 2.5.0
Adaptivecomputing Torque Resource Manager 2.4.3
Adaptivecomputing Torque Resource Manager 2.4.2
Adaptivecomputing Torque Resource Manager 2.4.11
Adaptivecomputing Torque Resource Manager 2.4.10
Adaptivecomputing Torque Resource Manager 2.3.3
Adaptivecomputing Torque Resource Manager 2.3.2
Adaptivecomputing Torque Resource Manager 2.3.13
Adaptivecomputing Torque Resource Manager 2.2.0
Adaptivecomputing Torque Resource Manager 2.1.9
Adaptivecomputing Torque Resource Manager 2.1.10
Adaptivecomputing Torque Resource Manager 2.0.0
Adaptivecomputing Torque Resource Manager 4.2.4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
6
7
8
9
10
NEXT »