Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
field test vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2020-16252
The Field Test gem 0.2.0 up to and including 0.3.2 for Ruby allows CSRF.
Field Test Project Field Test
5.3
CVSSv3
CVE-2019-13146
The field_test gem 0.3.0 for Ruby has unvalidated input. A method call that is expected to return a value from a certain set of inputs can be made to return any input, which can be dangerous depending on how applications use it. If an application treats arbitrary variants as trus...
Field Test Project Field Test 0.3.0
5.4
CVSSv3
CVE-2019-19678
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the generic field entry point via the Generic Test Definition field of a new Generic Test issue.
Xpand-it Xray Test Mangaement
NA
CVE-2008-5959
Multiple SQL injection vulnerabilities in start.asp in Active Test 2.1 allow remote malicious users to execute arbitrary SQL commands via the (1) useremail parameter (aka username field) or (2) password parameter (aka password field). NOTE: some of these details are obtained from...
Active Web Softwares Active Test 2.1
1 EDB exploit
5.4
CVSSv3
CVE-2019-19679
In "Xray Test Management for Jira" prior to version 3.5.5, remote authenticated attackers can cause XSS in the Pre-Condition Summary entry point via the summary field of a Create Pre-Condition action for a new Test Issue.
Xpand-it Xray Test Mangaement
4.3
CVSSv3
CVE-2021-22134
A document disclosure flaw was found in Elasticsearch versions after 7.6.0 and prior to 7.11.0 when Document or Field Level Security is used. Get requests do not properly apply security permissions when executing a query against a recently updated document. This affects documents...
Elastic Elasticsearch
Oracle Communications Cloud Native Core Automated Test Suite 1.8.0
NA
CVE-2011-1646
The web management interface on the Cisco RVS4000 Gigabit Security Router with software 1.x prior to 1.3.3.4 and 2.x prior to 2.0.2.7, and the WRVS4400N Gigabit Security Router with software prior to 2.0.2.1, allows remote authenticated users to execute arbitrary commands via the...
Cisco Rvs4000 1
Cisco Rvs4000 2
Cisco Rvs4000 Software 2.0.0.3
Cisco Rvs4000 Software 1.3.2.0
Cisco Rvs4000 Software 1.3.1.0
Cisco Rvs4000 Software 1.3.0.5
Cisco Wrvs4400n 1.1
Cisco Wrvs4400n 2
Cisco Wrvs4400n 1.0
Cisco Wrvs4400n Software 1.3.2.0
Cisco Wrvs4400n Software 1.3.0.5
Cisco Wrvs4400n Software 1.3.1.0
Cisco Wrvs4400n Software 2.0.0.3
NA
CVE-2005-4321
The Internet Key Exchange version 1 (IKEv1) implementation in Apani Networks EpiForce 1.9 and previous versions running IPSec, allow remote malicious users to cause a denial of service (crash) via certain IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1. NOT...
Apani Networks Epiforce Agent
NA
CVE-2005-4564
The Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta prior to 10.03.03.E might allow remote malicious users to cause a denial of service via crafted IKE packets, as demonstrated by the PROTOS ISAKMP Test Suite for IKEv1.
Adtran Netvanta 3xxx
Adtran Netvanta 4xxx
Adtran Netvanta 5xxx
NA
CVE-2005-4565
Format string vulnerability in the Internet Key Exchange version 1 (IKEv1) implementation in ADTRAN NetVanta prior to 10.03.03.E might allow remote malicious users to have an unknown impact via format string specifiers in crafted IKE packets, as demonstrated by the PROTOS ISAKMP ...
Adtran Netvanta 3xxx
Adtran Netvanta 4xxx
Adtran Netvanta 5xxx
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »