Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
gui vulnerabilities and exploits
(subscribe to this query)
516
VMScore
CVE-2021-27612
In specific situations SAP GUI for Windows until and including 7.60 PL9, 7.70 PL0, forwards a user to specific malicious website which could contain malware or might lead to phishing attacks to steal credentials of the victim.
Sap Gui For Windows 7.60
Sap Gui For Windows 7.70
NA
CVE-2023-0420
The Custom Post Type and Taxonomy GUI Manager WordPress plugin up to and including 1.1 does not have CSRF, and is lacking sanitising as well as escaping in some parameters, allowing malicious users to make a logged in admin put Stored Cross-Site Scripting payloads via CSRF
Custom Post Type And Taxonomy Gui Manager Project Custom Post Type And Taxonomy Gui Manager
801
VMScore
CVE-2017-14001
An Improper Neutralization of Special Elements used in an OS Command issue exists in Digium Asterisk GUI 2.1.0 and prior. An OS command injection vulnerability has been identified that may allow the execution of arbitrary code on the system through the inclusion of OS commands in...
Digium Asterisk Gui
756
VMScore
CVE-2020-5804
Marvell QConvergeConsole GUI <= 5.5.0.74 is affected by a path traversal vulnerability. The deleteEventLogFile method of the GWTTestServiceImpl class lacks proper validation of a user-supplied path prior to using it in file deletion operations. An authenticated, remote attacke...
Marvell Qconvergeconslole Gui
801
VMScore
CVE-2020-5805
In Marvell QConvergeConsole GUI <= 5.5.0.74, credentials are stored in cleartext in tomcat-users.xml. OS-level users on the QCC host who are not authorized to use QCC may use the plaintext credentials to login to QCC.
Marvell Qconvergeconslole Gui
NA
CVE-2022-41205
SAP GUI allows an authenticated malicious user to execute scripts in the local network. On successful exploitation, the attacker can gain access to registries which can cause a limited impact on confidentiality and high impact on availability of the application.
Sap Gui 7.70
383
VMScore
CVE-2018-7652
lib/Zonemaster/GUI/Dancer/Export.pm in Zonemaster Web GUI prior to 1.0.11 has XSS.
Zonemaster Zonemaster Web Gui
NA
CVE-2024-22125
Under certain conditions the Microsoft Edge browser extension (SAP GUI connector for Microsoft Edge) - version 1.0, allows an malicious user to access highly sensitive information which would otherwise be restricted causing high impact on confidentiality.
Sap Gui Connector 1.0
1000
VMScore
CVE-2010-2028
Buffer overflow in k23productions TFTPUtil GUI (aka TFTPGUI) 1.4.5 allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long transport mode.
Mgenti Tftputil Gui 1.4.5
2 EDB exploits
NA
CVE-2023-26922
SQL injection vulnerability found in Varisicte matrix-gui v.2 allows a remote malicious user to execute arbitrary code via the shell_exect parameter to the \www\pages\matrix-gui-2.0 endpoint.
Variscite Matrix-gui 2.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »