Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
http server vulnerabilities and exploits
(subscribe to this query)
935
VMScore
CVE-2019-8689
Multiple memory corruption issues were addressed with improved memory handling. This issue is fixed in iOS 12.4, macOS Mojave 10.14.6, tvOS 12.4, watchOS 5.3, Safari 12.1.2, iTunes for Windows 12.9.6, iCloud for Windows 7.13, iCloud for Windows 10.6. Processing maliciously crafte...
Apple Icloud
Apple Itunes
Apple Safari
Apple Iphone Os
Apple Mac Os X
Apple Tvos
Apple Watchos
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Workstation 7.0
1 EDB exploit
935
VMScore
CVE-2019-8506
A type confusion issue was addressed with improved memory handling. This issue is fixed in iOS 12.2, tvOS 12.2, watchOS 5.2, Safari 12.1, iTunes 12.9.4 for Windows, iCloud for Windows 7.11. Processing maliciously crafted web content may lead to arbitrary code execution.
Apple Icloud
Apple Itunes
Apple Safari
Apple Iphone Os
Apple Tvos
Apple Watchos
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Workstation 7.0
1 EDB exploit
1 Article
935
VMScore
CVE-2008-4385
Husdawg, LLC Systems Requirements Lab 3, as used by Instant Expert Analysis, allows remote malicious users to force the download and execution of arbitrary programs via by specifiying a malicious website argument to the Init method in (1) a certain ActiveX control (sysreqlab2.cab...
Systemrequirementslab System Requirements Lab 3
1 EDB exploit
935
VMScore
CVE-2007-4909
Interpretation conflict in WinSCP prior to 4.0.4 allows remote malicious users to perform arbitrary file transfers with a remote server via file-transfer commands in the final portion of a (1) scp, and possibly a (2) sftp or (3) ftp, URL, as demonstrated by a URL specifying login...
Winscp Winscp 3.5.6
Winscp Winscp 3.6
Winscp Winscp 4.0.2
Winscp Winscp 4.0.3
Winscp Winscp 3.6.1
Winscp Winscp 3.6.5 Beta
Winscp Winscp 2.0.0
Winscp Winscp 3.5.5 Beta
Winscp Winscp 3.8.1
Winscp Winscp 3.8.2
Winscp Winscp 3.6.6
Winscp Winscp 3.6.7
1 EDB exploit
935
VMScore
CVE-2006-6869
Directory traversal vulnerability in includes/search/search_mdforum.php in MAXdev MDForum 2.0.1 and previous versions, when magic_quotes_gpc is disabled and register_globals is enabled, allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) ...
Maxdev Mdforum
1 EDB exploit
915
VMScore
CVE-2006-1652
Multiple buffer overflows in (a) UltraVNC (aka Ultr@VNC) 1.0.1 and previous versions and (b) tabbed_viewer 1.29 (1) allow user-assisted remote malicious users to execute arbitrary code via a malicious server that sends a long string to a client that connects on TCP port 5900, whi...
Ultravnc Vnc Viewer 1.0.1
Ultravnc Tabbed Viewer 1.29
3 EDB exploits
912
VMScore
CVE-2017-12636
CouchDB administrative users can configure the database server via HTTP(S). Some of the configuration options include paths for operating system-level binaries that are subsequently launched by CouchDB. This allows an admin user in Apache CouchDB prior to 1.7.0 and 2.x prior to 2...
Apache Couchdb
Apache Couchdb 2.0.0
2 EDB exploits
5 Github repositories
910
VMScore
CVE-2016-6433
The Threat Management Console in Cisco Firepower Management Center 5.2.0 up to and including 6.0.1 allows remote authenticated users to execute arbitrary commands via crafted web-application parameters, aka Bug ID CSCva30872.
Cisco Firepower Management Center 5.2.0
Cisco Firepower Management Center 5.3.0
Cisco Firepower Management Center 5.3.0.2
Cisco Firepower Management Center 5.3.0.3
Cisco Firepower Management Center 5.3.0.4
Cisco Firepower Management Center 5.3.1
Cisco Firepower Management Center 5.3.1.3
Cisco Firepower Management Center 5.3.1.4
Cisco Firepower Management Center 5.3.1.5
Cisco Firepower Management Center 5.3.1.6
Cisco Firepower Management Center 5.4.0
Cisco Firepower Management Center 5.4.0.2
Cisco Firepower Management Center 5.4.1
Cisco Firepower Management Center 5.4.1.1
Cisco Firepower Management Center 5.4.1.2
Cisco Firepower Management Center 5.4.1.3
Cisco Firepower Management Center 5.4.1.4
Cisco Firepower Management Center 5.4.1.5
Cisco Firepower Management Center 5.4.1.6
Cisco Firepower Management Center 6.0.1
2 EDB exploits
905
VMScore
CVE-2019-1914
A vulnerability in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an authenticated, remote malicious user to perform a command injection attack. The vulnerability is due to insufficient validation of user-supplied input. An attacker cou...
Cisco Sf-220-24 Firmware
Cisco Sf220-24p Firmware
Cisco Sf220-48 Firmware
Cisco Sf220-48p Firmware
Cisco Sg220-26 Firmware
Cisco Sg220-26p Firmware
Cisco Sg220-28 Firmware
Cisco Sg220-28mp Firmware
Cisco Sg220-50 Firmware
Cisco Sg220-50p Firmware
Cisco Sg220-52 Firmware
1 EDB exploit
905
VMScore
CVE-2009-3250
The saveForwardAttachments procedure in the Compose Mail functionality in vtiger CRM 5.0.4 allows remote authenticated users to execute arbitrary code by composing an e-mail message with an attachment filename ending in (1) .php in installations based on certain Apache HTTP Serve...
Vtiger Vtiger Crm 5.0.4
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »