Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
axiom vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2015-5463
AxiomSL's Axiom java applet module (used for editing uploaded Excel files and associated Java RMI services) 9.5.3 and previous versions allows remote malicious users to (1) access data of other basic users through arbitrary SQL commands, (2) perform a horizontal and vertical...
Axiomsl Axiom
6.1
CVSSv3
CVE-2015-5462
AxiomSL's Axiom Google Web Toolkit module 9.5.3 and previous versions allows remote malicious users to inject HTML into the scoping dashboard features.
Axiomsl Axiom
8.8
CVSSv3
CVE-2015-5384
AxiomSL's Axiom Google Web Toolkit module 9.5.3 and previous versions is vulnerable to a Session Fixation attack.
Axiomsl Axiom
NA
CVE-2014-1640
axiom-test.sh in axiom 20100701-1.1 uses tempfile to create a safe temporary file but appends a suffix to the original filename and writes to this new filename, which allows local users to overwrite arbitrary files via a symlink attack on the new filename.
Debian Axiom 20100701-1.1
NA
CVE-2012-2455
Advanced Productivity Software DTE Axiom prior to 12.3.3 does not validate the registration ID, which allows remote malicious users to bypass authentication and read or modify data about users, customers, and projects via unspecified vectors.
Advance Productivity Software Dte Axiom
NA
CVE-2007-0200
PHP remote file inclusion vulnerability in template.php in Geoffrey Golliher Axiom Photo/News Gallery (axiompng) 0.8.6 allows remote malicious users to execute arbitrary PHP code via a URL in the baseAxiomPath parameter.
Geoffrey Golliher Axiom Photo News Gallery 0.8.6
1 EDB exploit
NA
CVE-2023-42128
This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of Magnet Forensics AXIOM. User interaction is required to exploit this vulnerability in that the target must acquire data from a malicious mobile device. The specific flaw ex...
9.8
CVSSv3
CVE-2024-3273
** UNSUPPORTED WHEN ASSIGNED ** A vulnerability, which was classified as critical, was found in D-Link DNS-320L, DNS-325, DNS-327L and DNS-340L up to 20240403. Affected is an unknown function of the file /cgi-bin/nas_sharing.cgi of the component HTTP GET Request Handler. The mani...
Dlink Dns-320l Firmware -
Dlink Dns-120 Firmware -
Dlink Dnr-202l Firmware -
Dlink Dns-315l Firmware -
Dlink Dns-320 Firmware -
Dlink Dns-320lw Firmware -
Dlink Dns-321 Firmware -
Dlink Dnr-322l Firmware -
Dlink Dns-323 Firmware -
Dlink Dns-325 Firmware -
Dlink Dns-326 Firmware -
Dlink Dns-327l Firmware -
Dlink Dnr-326 Firmware -
Dlink Dns-340l Firmware -
Dlink Dns-343 Firmware -
Dlink Dns-345 Firmware -
Dlink Dns-726-4 Firmware -
Dlink Dns-1100-4 Firmware -
Dlink Dns-1200-05 Firmware -
Dlink Dns-1550-04 Firmware -
6 Github repositories
2 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started