Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ipswitch vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2018-8938
A Code Injection issue exists in DlgSelectMibFile.asp in Ipswitch WhatsUp Gold prior to 2018 (18.0). Malicious actors can inject a specially crafted SNMP MIB file that could allow them to execute arbitrary commands and code on the WhatsUp Gold server.
Ipswitch Whatsup Gold
7.5
CVSSv2
CVE-2005-1250
SQL injection vulnerability in the logon screen of the web front end (NmConsole/Login.asp) for IpSwitch WhatsUp Professional 2005 SP1 allows remote malicious users to execute arbitrary SQL commands via the (1) User Name field (sUserName parameter) or (2) Password (sPassword param...
Ipswitch Whatsup Professional 2005 Sp1
1 EDB exploit
5
CVSSv2
CVE-2001-0039
IPSwitch IMail 6.0.5 allows remote malicious users to cause a denial of service using the SMTP AUTH command by sending a base64-encoded user password whose length is between 80 and 136 bytes.
Ipswitch Imail 6.0.5
4.6
CVSSv2
CVE-2004-1520
Stack-based buffer overflow in IPSwitch IMail 8.13 allows remote authenticated users to execute arbitrary code via a long IMAP DELETE command.
Ipswitch Imail 8.13
3 EDB exploits
4.3
CVSSv2
CVE-2015-7679
Cross-site scripting (XSS) vulnerability in Ipswitch MOVEit Mobile prior to 1.2.2 allows remote malicious users to inject arbitrary web script or HTML via the query string to mobile/.
Ipswitch Moveit Mobile
7.5
CVSSv2
CVE-2018-8939
An SSRF issue exists in NmAPI.exe in Ipswitch WhatsUp Gold prior to 2018 (18.0). Malicious actors can submit specially crafted requests via the NmAPI executable to (1) gain unauthorized access to the WhatsUp Gold system, (2) obtain information about the WhatsUp Gold system, or (3...
Ipswitch Whatsup Gold
6.5
CVSSv2
CVE-2016-1000000
Ipswitch WhatsUp Gold 16.4.1 WrFreeFormText.asp sUniqueID Parameter Blind SQL Injection
Ipswitch Whatsup Gold
3.5
CVSSv2
CVE-2015-7676
Ipswitch MOVEit File Transfer (formerly DMZ) 8.1 and previous versions, when configured to support file view on download, allows remote authenticated users to conduct cross-site scripting (XSS) attacks by uploading HTML files.
Ipswitch Moveit Dmz
4.6
CVSSv2
CVE-2017-16513
Ipswitch WS_FTP Professional prior to 12.6.0.3 has buffer overflows in the local search field and the backup locations field, aka WSCLT-1729.
Ipswitch Ws Ftp
1 EDB exploit
6.8
CVSSv2
CVE-2019-18465
In Progress MOVEit Transfer 11.1 prior to 11.1.3, a vulnerability has been found that could allow an malicious user to sign in without full credentials via the SSH (SFTP) interface. The vulnerability affects only certain SSH (SFTP) configurations, and is applicable only if the My...
Ipswitch Moveit Transfer
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
3
4
5
6
7
8
9
10
NEXT »