Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
locator vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-1999-0228
Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT.
Microsoft Windows Nt 4.0
NA
CVE-2023-25709
Cross-Site Request Forgery (CSRF) vulnerability in Plainware Locatoraid Store Locator plugin <= 3.9.11 versions.
Plainware Locatoraid
4.6
CVSSv2
CVE-1999-1470
Eastman Work Management 3.21 stores passwords in cleartext in the COMMON and LOCATOR registry keys, which could allow local users to gain privileges.
Eastman Software Work Management 3.2.1
NA
CVE-2023-41507
Super Store Finder v3.6 exists to contain multiple SQL injection vulnerabilities in the store locator component via the products, distance, lat, and lng parameters.
Superstorefinder Super Store Finder 3.6
1 Github repository
7.5
CVSSv2
CVE-2017-7919
An Improper Authentication issue exists in Newport XPS-Cx and XPS-Qx. An attacker may bypass authentication by accessing a specific uniform resource locator (URL).
Newport Xps-cx Firmware -
Newport Xps-qx Firmware -
6.4
CVSSv2
CVE-2017-5152
An issue exists in Advantech WebAccess Version 8.1. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access pages unrestricted (AUTHENTICATION BYPASS).
Advantech Webaccess 8.1
7.5
CVSSv2
CVE-2017-7931
In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication.
Abb Ip Gateway Firmware
5
CVSSv2
CVE-2016-8346
An issue exists in Moxa EDR-810 Industrial Secure Router. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access configuration and log files (PRIVILEGE ESCALATION).
Moxa Edr-810 Firmware
5
CVSSv2
CVE-2016-9368
An issue exists in Eaton xComfort Ethernet Communication Interface (ECI) Versions 1.07 and prior. By accessing a specific uniform resource locator (URL) on the webserver, a malicious user may be able to access files without authenticating.
Eaton Xcomfort Ethernet Communication Interface
4.6
CVSSv2
CVE-2021-42563
There is an Unquoted Service Path in NI Service Locator (nisvcloc.exe) in versions before 18.0 on Windows. This may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate privileges.
Ni Ni Service Locator
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-17519
open redirect
CVE-2024-21683
cache poisoning
CVE-2021-47524
CVE-2021-47521
CVE-2024-5229
CVE-2021-47560
local
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »