Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
field test vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2020-16252
The Field Test gem 0.2.0 up to and including 0.3.2 for Ruby allows CSRF.
Field Test Project Field Test
445
VMScore
CVE-2019-13146
The field_test gem 0.3.0 for Ruby has unvalidated input. A method call that is expected to return a value from a certain set of inputs can be made to return any input, which can be dangerous depending on how applications use it. If an application treats arbitrary variants as trus...
Field Test Project Field Test 0.3.0
312
VMScore
CVE-2019-19678
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the generic field entry point via the Generic Test Definition field of a new Generic Test issue.
Xpand-it Xray Test Mangaement
755
VMScore
CVE-2008-5959
Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). NOTE: some of these details are obtained from...
Active Web Softwares Active Test 2.1
1 EDB exploit
312
VMScore
CVE-2019-19679
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the Pre-Condition Summary entry point via the summary field of a Create Pre-Condition action for a new Test Issue.
Xpand-it Xray Test Mangaement
356
VMScore
CVE-2021-22134
A document disclosure flaw was found in Elasticsearch versions after 7.6.0 and prior to 7.11.0 when Document or Field Level Security is used. Get requests do not properly apply security permissions when executing a query against a recently updated document. This affects documents...
Elastic Elasticsearch
Oracle Communications Cloud Native Core Automated Test Suite 1.8.0
801
VMScore
CVE-2011-1646
The web management interface on the Cisco RVS4000 Gigabit Security Router with software 1.x prior to 1.3.3.4 and 2.x prior to 2.0.2.7, and the WRVS4400N Gigabit Security Router with software prior to 2.0.2.1, allows remote authenticated users to execute arbitrary commands via the...
Cisco Rvs4000 1
Cisco Rvs4000 2
Cisco Rvs4000 Software 2.0.0.3
Cisco Rvs4000 Software 1.3.2.0
Cisco Rvs4000 Software 1.3.1.0
Cisco Rvs4000 Software 1.3.0.5
Cisco Wrvs4400n 1.1
Cisco Wrvs4400n 2
Cisco Wrvs4400n 1.0
Cisco Wrvs4400n Software 1.3.2.0
Cisco Wrvs4400n Software 1.3.0.5
Cisco Wrvs4400n Software 1.3.1.0
Cisco Wrvs4400n Software 2.0.0.3
445
VMScore
CVE-2006-0718
The Internet Key Exchange version 1 (IKEv1) implementation in Avaya VSU 100, 2000, 7500, 10000, and CSU 5000, when running IPSec, allows remote malicious users to cause a denial of service (crash) via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1....
Avaya Vsu 7500 3.2.40
Avaya Vsu 100 3.2.40
Avaya Vsu 10000 3.2.40
Avaya Vsu 2000 3.2.40
Avaya Csu 5000 3.2.40
445
VMScore
CVE-2006-1646
The Internet Key Exchange version 1 (IKEv1) implementation (isakmp_agg.c) in the Shoichi Sakane KAME Project racoon, as used by NetBSD 1.6, 2.x prior to 20060119, certain FreeBSD releases, and possibly other distributions of BSD or Linux operating systems, when running in aggress...
Internet Key Exchange Internet Key Exchange 1
694
VMScore
CVE-2005-4321
The Internet Key Exchange version 1 (IKEv1) implementation in Apani Networks EpiForce 1.9 and previous versions running IPSec, allow remote malicious users to cause a denial of service (crash) via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOT...
Apani Networks Epiforce Agent
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »