Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
associated vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-20230
A vulnerability in the restricted security domain implementation of Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote malicious user to read, modify, or delete non-tenant policies (for example, access policies) created by users associa...
Cisco Application Policy Infrastructure Controller
6.1
CVSSv3
CVE-2019-20173
The Auth0 wp-auth0 plugin 3.11.x prior to 3.11.3 for WordPress allows XSS via a wle parameter associated with wp-login.php.
Auth0 Login By Auth0
NA
CVE-2001-1200
Microsoft Windows XP allows local users to bypass a locked screen and run certain programs that are associated with Hot Keys.
Microsoft Windows Xp
NA
CVE-2012-1927
Opera prior to 11.62 allows remote malicious users to spoof the address field by triggering the launch of a dialog window associated with a different domain.
Opera Opera Browser 11.60
Opera Opera Browser 11.52
Opera Opera Browser 11.51
Opera Opera Browser 11.00
Opera Opera Browser 10.53
Opera Opera Browser 10.10
Opera Opera Browser 9.63
Opera Opera Browser 9.62
Opera Opera Browser 9.50
Opera Opera Browser 9.21
Opera Opera Browser 9.20
Opera Opera Browser 8.54
Opera Opera Browser 8.52
Opera Opera Browser 8.0
Opera Opera Browser 7.50
Opera Opera Browser 6.12
Opera Opera Browser 6.11
Opera Opera Browser 11.50
Opera Opera Browser 10.63
Opera Opera Browser 10.62
Opera Opera Browser 10.01
Opera Opera Browser 9.61
4.3
CVSSv3
CVE-2016-6094
IBM Tivoli Key Lifecycle Manager 2.0.1, 2.5, and 2.6 generates an error message that includes sensitive information about its environment, users, or associated data.
Ibm Security Key Lifecycle Manager 2.5.0.7
Ibm Security Key Lifecycle Manager 2.5.0.5
Ibm Security Key Lifecycle Manager 2.5.0.0
Ibm Tivoli Key Lifecycle Manager 2.0.1.7
Ibm Security Key Lifecycle Manager 2.6.0.0
Ibm Tivoli Key Lifecycle Manager 2.0.1.1
Ibm Tivoli Key Lifecycle Manager 2.0.1.5
Ibm Tivoli Key Lifecycle Manager 2.0.1.4
Ibm Tivoli Key Lifecycle Manager 2.0.1.3
Ibm Security Key Lifecycle Manager 2.6.0.2
Ibm Security Key Lifecycle Manager 2.5.0.4
Ibm Security Key Lifecycle Manager 2.5.0.3
Ibm Security Key Lifecycle Manager 2.5.0.2
Ibm Security Key Lifecycle Manager 2.5.0.1
Ibm Tivoli Key Lifecycle Manager 2.0.1
Ibm Security Key Lifecycle Manager 2.5.0.6
Ibm Tivoli Key Lifecycle Manager 2.0.1.8
Ibm Tivoli Key Lifecycle Manager 2.0.1.6
Ibm Security Key Lifecycle Manager 2.6.0.1
Ibm Tivoli Key Lifecycle Manager 2.0.1.2
9.8
CVSSv3
CVE-2022-24961
In Portainer Agent prior to 2.11.1, an API server can continue running even if not associated with a Portainer instance in the past few days.
Portainer Portainer
NA
CVE-2010-0118
Bournal prior to 1.4.1 allows local users to overwrite arbitrary files via a symlink attack on unspecified temporary files associated with a --hack_the_gibson update check.
Becauseinter Bournal 1.0
Becauseinter Bournal 0.9
Becauseinter Bournal 0.2
Becauseinter Bournal 0.1
Becauseinter Bournal 0.8
Becauseinter Bournal 0.7
Becauseinter Bournal
Becauseinter Bournal 1.2
Becauseinter Bournal 1.1
Becauseinter Bournal 0.4.5
Becauseinter Bournal 0.3
Becauseinter Bournal 1.3
Becauseinter Bournal 0.6
Becauseinter Bournal 0.4
NA
CVE-2015-0886
Integer overflow in the crypt_raw method in the key-stretching implementation in jBCrypt prior to 0.4 makes it easier for remote malicious users to determine cleartext values of password hashes via a brute-force attack against hashes associated with the maximum exponent.
Mindrot Jbcrypt
Fedoraproject Fedora 22
Fedoraproject Fedora 20
Fedoraproject Fedora 21
7.8
CVSSv3
CVE-2021-38185
GNU cpio up to and including 2.13 allows malicious users to execute arbitrary code via a crafted pattern file, because of a dstring.c ds_fgetstr integer overflow that triggers an out-of-bounds heap write. NOTE: it is unclear whether there are common cases where the pattern file, ...
Gnu Cpio
1 Github repository
5.3
CVSSv3
CVE-2019-4547
IBM Security Directory Server 6.4.0 generates an error message that includes sensitive information about its environment, users, or associated data. IBM X-Force ID: 165949.
Ibm Security Directory Server 6.4.0.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »