Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
bernhard mueller vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2012-4528
The mod_security2 module prior to 2.7.0 for the Apache HTTP Server allows remote malicious users to bypass rules, and deliver arbitrary POST data to a PHP application, via a multipart request in which an invalid part precedes the crafted data.
Trustwave Modsecurity
Opensuse Opensuse 11.4
Opensuse Opensuse 12.2
Opensuse Opensuse 12.3
Fedoraproject Fedora 18
1 EDB exploit
5
CVSSv2
CVE-2009-0879
The CIM server in IBM Director prior to 5.20.3 Service Update 2 on Windows allows remote malicious users to cause a denial of service (daemon crash) via a long consumer name, as demonstrated by an M-POST request to a long /CIMListener/ URI.
Ibm Director 4.22
Ibm Director 4.21
Ibm Director 5.20.0
Ibm Director 5.10.3
Ibm Director 3.1.1
Ibm Director
Ibm Director 5.10.1
Ibm Director 5.10.0
Ibm Director 5.10.2
Ibm Director 4.11
Ibm Director 5.20.2
Ibm Director 5.20.1
Ibm Director 4.20
Ibm Director 4.12
Ibm Director 4.10
1 EDB exploit
7.5
CVSSv2
CVE-2007-5740
The format string protection mechanism in IMAPD for Perdition Mail Retrieval Proxy 1.17 and previous versions allows remote malicious users to execute arbitrary code via an IMAP tag with a null byte followed by a format string specifier, which is not counted by the mechanism.
Vergenet Perdition Mail Retrieval Proxy
1 EDB exploit
5
CVSSv2
CVE-2014-9436
Absolute path traversal vulnerability in SysAid On-Premise prior to 14.4.2 allows remote malicious users to read arbitrary files via a \\\\ (four backslashes) in the fileName parameter to getRdsLogFile.
Sysaid Sysaid
1 EDB exploit
5
CVSSv2
CVE-2005-3550
Directory traversal vulnerability in admin.php in toendaCMS prior to 0.6.2 allows remote malicious users to access arbitrary files via a .. (dot dot) in the id_user parameter.
Toenda Software Development Toendacms
1 EDB exploit
5
CVSSv2
CVE-2006-2341
The HTTP proxy in Symantec Gateway Security 5000 Series 2.0.1 and 3.0, and Enterprise Firewall 8.0, when NAT is being used, allows remote malicious users to determine internal IP addresses by using malformed HTTP requests, as demonstrated using a get request without a space separ...
Symantec Gateway Security 2.0.1
Symantec Gateway Security 3.0
Symantec Enterprise Firewall 8.0
Symantec Gateway Security 5000 Series 2.0.1
Symantec Gateway Security 5000 Series 3.0
1 EDB exploit
6.8
CVSSv2
CVE-2014-8008
Absolute path traversal vulnerability in the Real-Time Monitoring Tool (RTMT) API in Cisco Unified Communications Manager (CUCM) allows remote authenticated users to read arbitrary files via a full pathname in an API command, aka Bug ID CSCur49414.
Cisco Unified Communications Manager
1 EDB exploit
4.3
CVSSv2
CVE-2005-3329
Cross-site scripting (XSS) vulnerability in RSA Authentication Agent for Web 5.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the image parameter in a GetPic operation.
Rsa Authentication Agent For Web 5.1
Rsa Authentication Agent For Web 5.1.1
Rsa Authentication Agent For Web 5.2
Rsa Authentication Agent For Web
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
remote code execution
CVE-2024-34909
CVE-2024-3317
SSTI
CVE-2024-3400
CVE-2024-30051
wireless
CVE-2024-4622
CVE-2024-4908
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started