Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hyp3rlinx vulnerabilities and exploits
(subscribe to this query)
7.8
CVSSv3
CVE-2016-8742
The Windows installer that the Apache CouchDB team provides was vulnerable to local privilege escalation. All files in the install inherit the file permissions of the parent directory and therefore a non-privileged user can substitute any executable for the nssm.exe service launc...
Apache Couchdb 2.0.0
1 EDB exploit
NA
CVE-2015-5354
Open redirect vulnerability in Novius OS 5.0.1 (Elche) allows remote malicious users to redirect users to arbitrary web sites and conduct phishing attacks via a URL in the redirect parameter to admin/nos/login.
Novius-os Novius Os 5.0.1
1 EDB exploit
NA
CVE-2015-8038
Multiple cross-site scripting (XSS) vulnerabilities in the Graphical User Interface (GUI) in Fortinet FortiManager prior to 5.2.4 allow remote malicious users to inject arbitrary web script or HTML via the (1) sharedjobmanager or (2) SOMServiceObjDialog.
Fortinet Fortimanager Firmware
1 EDB exploit
NA
CVE-2015-5066
Multiple cross-site scripting (XSS) vulnerabilities in the MetalGenix GeniXCMS 0.0.3 allow remote malicious users to inject arbitrary web script or HTML via the (1) content or (2) title field in an add action in the posts page to index.php or the (3) q parameter in the posts page...
Metalgenix Genixcms 0.0.3
1 EDB exploit
NA
CVE-2015-5353
Directory traversal vulnerability in Novius OS 5.0.1 (Elche) allows remote malicious users to include and execute arbitrary local files via a .. (dot dot) in the tab parameter to admin/.
Novius-os Novius Os 5.0.1
1 EDB exploit
8.8
CVSSv3
CVE-2015-7293
Multiple cross-site request forgery (CSRF) vulnerabilities in Zope Management Interface 4.3.7 and previous versions, and Plone prior to 5.x.
Plone Plone 4.3.11
Plone Plone 4.3.10
Plone Plone 4.3.9
Plone Plone 4.3.8
Plone Plone 4.2.2
Plone Plone 4.2.1
Plone Plone 4.2
Plone Plone 4.1.6
Plone Plone 4.0.3
Plone Plone 4.0.2
Plone Plone 4.0.1
Plone Plone 4.0
Plone Plone 4.3.3
Plone Plone 4.3.2
Plone Plone 4.3.1
Plone Plone 4.3
Plone Plone 4.1.1
Plone Plone 4.1
Plone Plone 4.0.10
Plone Plone 4.0.9
Plone Plone 3.3.1
Plone Plone 3.3
1 EDB exploit
9.8
CVSSv3
CVE-2015-7346
SQL injection vulnerability in ZCMS 1.1.
Zcms Project Zcms 1.1
1 EDB exploit
4.8
CVSSv3
CVE-2015-7347
Cross-site scripting (XSS) vulnerability in ZCMS JavaServer Pages Content Management System 1.1.
Zcms Project Zcms 1.1
1 EDB exploit
NA
CVE-2015-7707
Ignite Realtime Openfire 3.10.2 allows remote authenticated users to gain administrator access via the isadmin parameter to user-edit-form.jsp.
Igniterealtime Openfire 3.10.2
1 EDB exploit
8.6
CVSSv3
CVE-2017-15644
SSRF exists in Webmin 1.850 via the PATH_INFO to tunnel/link.cgi, as demonstrated by a GET request for tunnel/link.cgi/http://INTRANET-IP:8000.
Webmin Webmin
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-34377
CVE-2024-20859
CVE-2023-49606
inject
arbitrary
CVE-2024-33788
CVE-2024-30973
IDOR
CVE-2024-33907
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »