Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
community server vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2007-0538
Telligent Community Server 2.1 and previous versions allows remote malicious users to cause a denial of service (bandwidth or thread consumption) via pingback service calls with a source URI that corresponds to (1) a large file, which triggers a long download session without a ti...
Telligent Systems Community Server Forums
NA
CVE-2014-9302
Server-side request forgery (SSRF) vulnerability in the cmisbrowser servlet in Content Management Interoperability Service (CMIS) in Alfresco Community Edition 5.0.a and previous versions allows remote malicious users to trigger outbound requests via a crafted URI in the url para...
Alfresco Community Edition
1 EDB exploit
NA
CVE-2009-5066
twiddle.sh in JBoss AS 5.0 and EAP 5.0 and previous versions accepts credentials as command-line arguments, which allows local users to read the credentials by listing the process and its arguments.
Redhat Jboss Community Application Server 5.0.0
Redhat Jboss Enterprise Application Platform 5.0.0
8.8
CVSSv3
CVE-2023-0265
Uvdesk version 1.1.1 allows an authenticated remote malicious user to execute commands on the server. This is possible because the application does not properly validate profile pictures uploaded by customers.
Uvdesk Community-skeleton 1.1.1
9.1
CVSSv3
CVE-2021-40604
A Server-Side Request Forgery (SSRF) vulnerability in IPS Community Suite prior to 4.6.2 allows remote authenticated users to request arbitrary URLs or trigger deserialization via phar protocol when generating class names dynamically. In some cases an exploitation is possible by ...
Invisioncommunity Ips Community Suite
NA
CVE-2005-4384
CitySoft Community Enterprise 4.x allows remote malicious users to obtain the full path of the server via an invalid (1) fuseaction parameter to index.cfm and (2) documentid parameter to document/docWindow.cfm.
Citysoft Community Enterprise 4.x
6.1
CVSSv3
CVE-2022-22777
The Web Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management contains easily exploitable Reflected Cross Site Scripting (XSS) vulnerabilities that allow an unauthenticated attacker with network access to execute scripts targeting the a...
Tibco Businessconnect Trading Community Management
5.4
CVSSv3
CVE-2022-22776
The Web Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management contains easily exploitable vulnerabilities that allows a low privileged attacker with network access to execute Stored Cross Site Scripting (XSS) on the affected system. A s...
Tibco Businessconnect Trading Community Management
8.8
CVSSv3
CVE-2022-22778
The Web Server component of TIBCO Software Inc.'s TIBCO BusinessConnect Trading Community Management contains an easily exploitable vulnerability that allows an unauthenticated attacker with network access to execute Cross-Site Request Forgery (CSRF) on the affected system. ...
Tibco Businessconnect Trading Community Management
6.5
CVSSv3
CVE-2017-5529
JasperReports library components contain an information disclosure vulnerability. This vulnerability includes the theoretical disclosure of any accessible information from the host file system. Affects TIBCO JasperReports Library Community Edition (versions 6.4.0 and below), TIBC...
Tibco Jasperreports Library Community Edition
Tibco Jasperreports Library For Activematrix Bpm
Tibco Jasperreports Professional 6.3.0
Tibco Jasperreports Professional
Tibco Jasperreports Server 6.2.0
Tibco Jasperreports Server 6.2.1
Tibco Jasperreports Server 6.3.0
Tibco Jasperreports Server
Tibco Jasperreports Server Community Edition
Tibco Jasperreports Server For Activematrix Bpm
Tibco Jaspersoft For Aws With Multi-tenancy
Tibco Jaspersoft Reporting And Analytics For Aws
Tibco Jaspersoft Studio For Activematrix Bpm
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »