Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
disclosure management vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2013-4722
Multiple cross-site scripting (XSS) vulnerabilities in Admin/login/default.asp in DDSN Interactive cm3 Acora CMS 6.0.6/1a, 6.0.2/1a, 5.5.7/12b, 5.5.0/1b-p1, and possibly other versions allow remote malicious users to inject arbitrary web script or HTML via the (1) username, (2) u...
Ddsn Cm3 Acora Content Management System 6.0.6\\/1a
Ddsn Cm3 Acora Content Management System 6.0.2\\/1a
Ddsn Cm3 Acora Content Management System 5.5.7\\/12b
Ddsn Cm3 Acora Content Management System 5.5.0\\/1b-p1
NA
CVE-2013-4723
Open redirect vulnerability in DDSN Interactive cm3 Acora CMS 6.0.6/1a, 6.0.2/1a, 5.5.7/12b, 5.5.0/1b-p1, and possibly other versions allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the l parameter to track.aspx.
Ddsn Cm3 Acora Content Management System 5.5.7\\/12b
Ddsn Cm3 Acora Content Management System 5.5.0\\/1b-p1
Ddsn Cm3 Acora Content Management System 6.0.6\\/1a
Ddsn Cm3 Acora Content Management System 6.0.2\\/1a
NA
CVE-2013-4724
DDSN Interactive cm3 Acora CMS 6.0.6/1a, 6.0.2/1a, 5.5.7/12b, 5.5.0/1b-p1, and possibly other versions, does not include the HTTPOnly flag in a Set-Cookie header for an unspecified cookie, which makes it easier for remote malicious users to obtain potentially sensitive informatio...
Ddsn Cm3 Acora Content Management System 6.0.2\\/1a
Ddsn Cm3 Acora Content Management System 5.5.7\\/12b
Ddsn Cm3 Acora Content Management System 5.5.0\\/1b-p1
Ddsn Cm3 Acora Content Management System 6.0.6\\/1a
NA
CVE-2013-4726
Cross-site request forgery (CSRF) vulnerability in DDSN Interactive cm3 Acora CMS 6.0.6/1a, 6.0.2/1a, 5.5.7/12b, 5.5.0/1b-p1, and possibly other versions, allows remote malicious users to hijack the authentication of unspecified victims via unknown vectors.
Ddsn Cm3 Acora Content Management System 5.5.0\\/1b-p1
Ddsn Cm3 Acora Content Management System 6.0.2\\/1a
Ddsn Cm3 Acora Content Management System 5.5.7\\/12b
Ddsn Cm3 Acora Content Management System 6.0.6\\/1a
5.3
CVSSv3
CVE-2013-1631
Verax NMS before 2.1.0 leaks connection details when any user executes a Repair Table action
Veraxsystems Network Management System
6.5
CVSSv3
CVE-2017-5672
Kony Enterprise Mobile Management (EMM) prior to 4.2.5.2 has the vulnerability of disclosing the private key in clear-text when changing the parameters of the request.
Kony Enterprise Mobile Management
NA
CVE-2010-4112
HP Insight Management Agents prior to 8.6 allows remote malicious users to obtain sensitive information via an unspecified request that triggers disclosure of the full path.
Hp Insight Management Agents
Hp Insight Management Agents 7.70.0.0
Hp Insight Management Agents 8.15.0.0
Hp Insight Management Agents 8.11.0.0
Hp Insight Management Agents 7.60.0.0
Hp Insight Management Agents 7.51.0.0
Hp Insight Management Agents 7.10.0.0
Hp Insight Management Agents 7.0.0.0
Hp Insight Management Agents 8.20.0.0
Hp Insight Management Agents 8.22.0.0
Hp Insight Management Agents 7.90.0.0
Hp Insight Management Agents 7.80.0.0
Hp Insight Management Agents 7.30.0.0
Hp Insight Management Agents 7.20.0.0
Hp Insight Management Agents 8.1.0.0
Hp Insight Management Agents 8.50.0.0
Hp Insight Management Agents 8.10.0.0
Hp Insight Management Agents 8.0.0.0
Hp Insight Management Agents 7.50.0.0
Hp Insight Management Agents 7.41.0.0
Hp Insight Management Agents 6.40.0.0
Hp Insight Management Agents 6.31.0.0
6.5
CVSSv3
CVE-2017-6673
A vulnerability in Cisco Firepower Management Center could allow an authenticated, remote malicious user to obtain user information. An attacker could use this information to perform reconnaissance. More Information: CSCvc10894. Known Affected Releases: 6.1.0.2 6.2.0. Known Fixed...
Cisco Firepower Management Center 6.1.0.2
Cisco Firepower Management Center 6.2.0
NA
CVE-2008-6493
Easy Content Management Publishing stores sensitive information under the web root with insufficient access control, which allows remote malicious users to download a database via a direct request for Database/News.mdb.
Easy-news Easy Content Management Publishing -
1 EDB exploit
NA
CVE-2007-6400
Directory traversal vulnerability in download_file.php in PolDoc CMS (aka PDDMS) 0.96 allows remote malicious users to read arbitrary files via a .. (dot dot) or absolute pathname in the filename parameter.
Poldoc Poldoc Document Management System 0.96
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »