Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
jakub palaczynski vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2016-2511
Cross-site scripting (XSS) vulnerability in WebSVN 2.3.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the path parameter to log.php.
Debian Debian Linux 8.0
Debian Debian Linux 7.0
Websvn Websvn
405
VMScore
CVE-2017-16787
The Web Configuration Utility in Meinberg LANTIME devices with firmware prior to 6.24.004 allows remote malicious users to read arbitrary files by leveraging failure to restrict URL access.
Meinbergglobal Lantime Firmware
1 EDB exploit
435
VMScore
CVE-2018-18865
The Royal browser extensions TS prior to 4.3.60728 (Release Date 2018-07-28) and TSX prior to 3.3.1 (Release Date 2018-09-13) allow Credentials Disclosure.
Royalapplications Royal Ts
Royalapplications Royal Tsx
1 EDB exploit
465
VMScore
CVE-2019-8452
A hard-link created from log file archive of Check Point ZoneAlarm up to 15.4.062 or Check Point Endpoint Security client for Windows before E80.96 to any file on the system will get its permission changed so that all users can access that linked file. Doing this on files with li...
Checkpoint Endpoint Security
Checkpoint Zonealarm
1 EDB exploit
435
VMScore
CVE-2018-6443
A vulnerability in Brocade Network Advisor Versions prior to 14.3.1 could allow an unauthenticated, remote malicious user to log in to the JBoss Administration interface of an affected system using an undocumented user credentials and install additional JEE applications. A remote...
Brocade Network Advisor
Netapp Brocade Network Advisor -
1 EDB exploit
905
VMScore
CVE-2019-4013
IBM BigFix Platform 9.5 could allow any authenticated user to upload any file to any location on the server with root privileges. This results in code execution on underlying system with root privileges. IBM X-Force ID: 155887.
Ibm Bigfix Platform
1 EDB exploit
405
VMScore
CVE-2015-2125
Unspecified vulnerability in HP WebInspect 7.x up to and including 10.4 prior to 10.4 update 1 allows remote authenticated users to bypass intended access restrictions via unknown vectors.
Hp Webinspect
1 EDB exploit
828
VMScore
CVE-2018-18864
Loadbalancer.org Enterprise VA MAX prior to 8.3.3 has XSS because Apache HTTP Server logs are displayed.
Loadbalancer Enterprise Va Max
405
VMScore
CVE-2016-3473
Unspecified vulnerability in the BI Publisher (formerly XML Publisher) component in Oracle Fusion Middleware 11.1.1.7.0, 11.1.1.9.0, and 12.2.1.0.0 allows remote authenticated users to affect confidentiality via unknown vectors.
Oracle Business Intelligence Publisher 12.2.1.0.0
Oracle Business Intelligence Publisher 11.1.1.9.0
Oracle Business Intelligence Publisher 11.1.1.7.0
1 EDB exploit
890
VMScore
CVE-2015-5952
Directory traversal vulnerability in Thomson Reuters for FATCA prior to 5.2 allows remote malicious users to execute arbitrary files via the item parameter.
Thomsonreuters Fatca
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »