Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
han sahin vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2016-0891
Multiple cross-site request forgery (CSRF) vulnerabilities in administrative pages in EMC ViPR SRM prior to 3.7 allow remote malicious users to hijack the authentication of administrators.
Emc Vipr Srm
1 EDB exploit
4.8
CVSSv3
CVE-2016-7168
Cross-site scripting (XSS) vulnerability in the media_handle_upload function in wp-admin/includes/media.php in WordPress prior to 4.6.1 might allow remote malicious users to inject arbitrary web script or HTML by tricking an administrator into uploading an image file that has a c...
Wordpress Wordpress
11 Github repositories
NA
CVE-2016-0516
Unspecified vulnerability in the Oracle Quality component in Oracle E-Business Suite 11.5.10.2 allows remote malicious users to affect confidentiality and integrity via unknown vectors related to QA / Order Management Integration.
Oracle E-business Suite 11.5.10.2
NA
CVE-2015-6911
SQL injection vulnerability in Synology Video Station prior to 1.5-0763 allows remote malicious users to execute arbitrary SQL commands via the id parameter to watchstatus.cgi.
Synology Video Station
1 EDB exploit
NA
CVE-2015-6912
Synology Video Station prior to 1.5-0763 allows remote malicious users to execute arbitrary shell commands via shell metacharacters in the subtitle_codepage parameter to subtitle.cgi.
Synology Video Station
1 EDB exploit
NA
CVE-2015-2838
Cross-site request forgery (CSRF) vulnerability in Nitro API in Citrix NetScaler prior to 10.5 build 52.3nc allows remote malicious users to hijack the authentication of administrators for requests that execute arbitrary commands as nsroot via shell metacharacters in the file_nam...
Citrix Netscaler 10.5
1 EDB exploit
NA
CVE-2015-2746
The network diagnostics tool (CommandLineServlet) in the Appliance Manager command line utility (CLU) in Websense TRITON 7.8.3 and V-Series appliances prior to 7.8.4 Hotfix 02 allows remote authenticated users to execute arbitrary commands via shell metacharacters in the "se...
Websense V-series Appliances
Websense Triton 7.8.3
1 EDB exploit
NA
CVE-2015-2682
Citrix Command Center prior to 5.1 Build 35.4 and 5.2 before Build 42.7 allows remote malicious users to obtain credentials via a direct request to conf/securitydbData.xml.
Citrix Command Center 5.2
Citrix Command Center 5.1
1 EDB exploit
NA
CVE-2015-0524
SQL injection vulnerability in the Gateway Provisioning service in EMC Secure Remote Services Virtual Edition (ESRS VE) 3.02 and 3.03 allows remote malicious users to execute arbitrary SQL commands via unspecified vectors.
Emc Secure Remote Services 3.02
Emc Secure Remote Services 3.03
NA
CVE-2015-0525
The Gateway Provisioning service in EMC Secure Remote Services Virtual Edition (ESRS VE) 3.02 and 3.03 allows remote malicious users to execute arbitrary OS commands via unspecified vectors.
Emc Secure Remote Services 3.02
Emc Secure Remote Services 3.03
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »