Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
core security technologies vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2011-1510
Cross-site scripting (XSS) vulnerability in SolutionSearch.do in ManageEngine ServiceDesk Plus (SDP) prior to 8012 allows remote malicious users to inject arbitrary web script or HTML via the searchText parameter.
Manageengine Servicedesk Plus
NA
CVE-2011-15133
Core Security Technologies Advisory - When the install script for e107 CMS has not been removed, an attacker can "reinstall" the application using arbitrary parameters. If the attacker puts a valid MySql server followed a semicolon and PHP code, this will be executed wh...
5
CVSSv2
CVE-2011-1515
The inet service in HP OpenView Storage Data Protector 6.00 up to and including 6.20 allows remote malicious users to cause a denial of service (daemon exit) via a request containing crafted parameters.
Hp Openview Storage Data Protector 6.00
Hp Openview Storage Data Protector 6.10
Hp Openview Storage Data Protector 6.11
Hp Openview Storage Data Protector 6.20
7.5
CVSSv2
CVE-2008-2080
Stack-based buffer overflow in the Read32s_64 function in src/lib/cdfread64.c in the NASA Goddard Space Flight Center Common Data Format (CDF) library prior to 3.2.1 allows context-dependent malicious users to execute arbitrary code via a .cdf file with crafted length tags.
Nasa Goddard Space Flight Center Common Data Format 2.2
Nasa Goddard Space Flight Center Common Data Format 2.3
Nasa Goddard Space Flight Center Common Data Format 2.0
Nasa Goddard Space Flight Center Common Data Format 2.1
Nasa Goddard Space Flight Center Common Data Format 3.0
Nasa Goddard Space Flight Center Common Data Format 3.1
Nasa Goddard Space Flight Center Common Data Format 2.4
Nasa Goddard Space Flight Center Common Data Format 2.5
Nasa Goddard Space Flight Center Common Data Format 2.6
Nasa Goddard Space Flight Center Common Data Format 2.7
Nasa Goddard Space Flight Center Common Data Format
NA
CVE-2011-15103
ManageEngine ServiceDesk Plus is a complete web based and ITIL ready service desk software with integrated asset management developed by ManageEngine, the Enterprise IT Management Software division of Zoho Corporation. The authentication process of ServiceDesk Plus obfuscates use...
NA
CVE-2011-15113
Core Security Technologies Advisory - The Administration Console of Oracle GlassFish Server, which is listening by default on port 4848/TCP, is prone to an authentication bypass vulnerability. This vulnerability can be exploited by remote attackers to access sensitive data on the...
5
CVSSv2
CVE-2011-1514
The inet service in HP OpenView Storage Data Protector 6.00 up to and including 6.20 allows remote malicious users to cause a denial of service (NULL pointer dereference and daemon crash) via a request containing crafted parameters.
Hp Openview Storage Data Protector 6.11
Hp Openview Storage Data Protector 6.00
Hp Openview Storage Data Protector 6.10
Hp Openview Storage Data Protector 6.20
NA
CVE-2010-0369
Core Security Technologies Advisory - A security vulnerability was discovered in LANDesk Management Suite: a cross-site request forgery which allows an external remote attacker to make a command injection that can be used to execute arbitrary code using the webserver user. As a r...
NA
CVE-2010-03693
Core Security Technologies Advisory - A security vulnerability was discovered in LANDesk Management Suite: a cross-site request forgery which allows an external remote attacker to make a command injection that can be used to execute arbitrary code using the webserver user. As a r...
6.3
CVSSv2
CVE-2007-1744
Directory traversal vulnerability in the Shared Folders feature for VMware Workstation prior to 5.5.4, when a folder is shared, allows users on the guest system to write to arbitrary files on the host system via the "Backdoor I/O Port" interface.
Vmware Workstation
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »