Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
level vulnerabilities and exploits
(subscribe to this query)
10
CVSSv2
CVE-2008-0229
The telnet service in LevelOne WBR-3460 4-Port ADSL 2/2+ Wireless Modem Router with firmware 1.00.11 and 1.00.12 does not require authentication, which allows remote attackers on the local or wireless network to obtain administrative access.
Level One Wbr-3460a 1.0.12
Level One Wbr-3460a 1.0.11
5
CVSSv2
CVE-2008-0636
Level Platforms, Inc. (LPI) Managed Workplace Service Center 4.x, 5.x and 6.x allows remote malicious users to obtain sensitive information via a direct request to About/SC_About.htm, which provides version and patch information.
Level Platforms Managed Workplace Service Center 5
Level Platforms Managed Workplace Service Center 6
Level Platforms Managed Workplace Service Center 4
1 EDB exploit
2.1
CVSSv2
CVE-2017-15518
All versions of OnCommand API Services before 2.1 and NetApp Service Level Manager before 1.0RC4 log a privileged database user account password. All users are urged to move to a fixed version. Since the affected password is changed during every upgrade/installation no further ac...
Netapp Service Level Manager 1.0
Netapp Service Level Manager
Netapp Oncommand Api Services
4.3
CVSSv2
CVE-2007-5027
Multiple cross-site scripting (XSS) vulnerabilities in cgi-bin/ddns in the web management panel for the WBR3404TX broadband router with firmware R1.94p0vTIG allow remote malicious users to inject arbitrary web script or HTML via the (1) DD or (2) DU parameter.
Level One Wbr3404tx
1 EDB exploit
7.5
CVSSv2
CVE-2010-2511
SQL injection vulnerability in viewnews.php in 2daybiz Multi Level Marketing (MLM) Software allows remote malicious users to execute arbitrary SQL commands via the nwsid parameter.
2daybiz Multi Level Marketing Software
1 EDB exploit
7.5
CVSSv2
CVE-2010-2516
Multiple SQL injection vulnerabilities in 2daybiz Multi Level Marketing (MLM) Software allow remote malicious users to execute arbitrary SQL commands via the username parameter to (1) index.php and (2) admin/index.php. NOTE: the provenance of this information is unknown; the deta...
2daybiz Multi Level Marketing Software
7.5
CVSSv2
CVE-2009-2082
SQL injection vulnerability in insidepage.php in Creative Web Solutions Multi-Level CMS 1.21 allows remote malicious users to execute arbitrary SQL commands via the catid parameter. NOTE: some of these details are obtained from third party information.
Creative Web Solutions Multi-level Cms 1.21
10
CVSSv2
CVE-2009-0043
The smmsnmpd service in CA Service Metric Analysis r11.0 through r11.1 SP1 and Service Level Management 3.5 does not properly restrict access, which allows remote malicious users to execute arbitrary commands via unspecified vectors.
Ca Service Metric Analysis R11.1
Ca Service Metric Analysis R11.0
Ca Service Level Management 3.5
1 EDB exploit
6.8
CVSSv2
CVE-2020-3567
A vulnerability in the management REST API of Cisco Industrial Network Director (IND) could allow an authenticated, remote malicious user to cause the CPU utilization to increase to 100 percent, resulting in a denial of service (DoS) condition on an affected device. The vulnerabi...
Cisco Network Level Service 1.8(0.142)
Cisco Industrial Network Director
Cisco Network Level Service 1.9(0.63)
NA
CVE-2023-20190
A vulnerability in the classic access control list (ACL) compression feature of Cisco IOS XR Software could allow an unauthenticated, remote malicious user to bypass the protection that is offered by a configured ACL on an affected device. This vulnerability is due to incorrect d...
Cisco Ios Xr
Cisco Ios Xr 7.9
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »