Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
hyp3rlinx vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2018-7756
RunExeFile.exe in the installer for DEWESoft X3 SP1 (64-bit) devices does not require authentication for sessions on TCP port 1999, which allows remote malicious users to execute arbitrary code or access internal commands, as demonstrated by a RUN command that launches a .EXE fil...
Dewesoft Dewesoft X3
1 EDB exploit
1000
VMScore
CVE-2016-7866
Adobe Animate versions 15.2.1.95 and previous versions have an exploitable memory corruption vulnerability. Successful exploitation could lead to arbitrary code execution.
Adobe Animate
1 EDB exploit
905
VMScore
CVE-2017-3006
Adobe Thor versions 3.9.5.353 and previous versions have a vulnerability related to the use of improper resource permissions during the installation of Creative Cloud desktop applications.
Adobe Creative Cloud
1 EDB exploit
855
VMScore
CVE-2017-17055
Artica Web Proxy prior to 3.06.112911 allows remote malicious users to execute arbitrary code as root by conducting a cross-site scripting (XSS) attack involving the username-form-id parameter to freeradius.users.php.
Articatech Artica Proxy
1 EDB exploit
828
VMScore
CVE-2018-6461
March Hare WINCVS prior to 2.8.01 build 6610, and CVS Suite prior to 2009R2 build 6610, contains an Insecure Library Loading vulnerability in the wincvs2.exe or wincvs.exe file, which may allow local users to gain privileges via a Trojan horse Python or TCL DLL file in the curren...
March-hare Wincvs
785
VMScore
CVE-2017-14086
Pre-authorization Start Remote Process vulnerabilities in Trend Micro OfficeScan 11.0 and XG may allow unauthenticated users who can access the OfficeScan server to start the fcgiOfcDDA.exe executable or cause a potential INI corruption, which may cause the server disk space to b...
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1 EDB exploit
771
VMScore
CVE-2018-6892
An issue exists in CloudMe prior to 1.11.0. An unauthenticated remote attacker that can connect to the "CloudMe Sync" client application listening on port 8888 can send a malicious payload causing a buffer overflow condition. This will result in an attacker controlling ...
Cloudme Sync
4 EDB exploits
4 Github repositories
765
VMScore
CVE-2016-4309
Session fixation vulnerability in Symphony CMS 2.6.7, when session.use_only_cookies is disabled, allows remote malicious users to hijack web sessions via the PHPSESSID parameter.
Getsymphony Symphony 2.6.7
1 EDB exploit
755
VMScore
CVE-2017-14089
An Unauthorized Memory Corruption vulnerability in Trend Micro OfficeScan 11.0 and XG may allow remote unauthenticated users who can access the OfficeScan server to target cgiShowClientAdm.exe and cause memory corruption issues.
Trendmicro Officescan 12.0
Trendmicro Officescan 11.0
1 EDB exploit
755
VMScore
CVE-2017-12965
Session fixation vulnerability in Apache2Triad 1.5.4 allows remote malicious users to hijack web sessions via the PHPSESSID parameter.
Apache2triad Apache2triad 1.5.4
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »