Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
locator vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-0228
Denial of service in RPCSS.EXE program (RPC Locator) in Windows NT.
Microsoft Windows Nt 4.0
8.8
CVSSv3
CVE-2023-25709
Cross-Site Request Forgery (CSRF) vulnerability in Plainware Locatoraid Store Locator plugin <= 3.9.11 versions.
Plainware Locatoraid
NA
CVE-1999-1470
Eastman Work Management 3.21 stores passwords in cleartext in the COMMON and LOCATOR registry keys, which could allow local users to gain privileges.
Eastman Software Work Management 3.2.1
9.8
CVSSv3
CVE-2023-41507
Super Store Finder v3.6 exists to contain multiple SQL injection vulnerabilities in the store locator component via the products, distance, lat, and lng parameters.
Superstorefinder Super Store Finder 3.6
1 Github repository
9.8
CVSSv3
CVE-2017-7919
An Improper Authentication issue exists in Newport XPS-Cx and XPS-Qx. An attacker may bypass authentication by accessing a specific uniform resource locator (URL).
Newport Xps-cx Firmware -
Newport Xps-qx Firmware -
9.1
CVSSv3
CVE-2017-5152
An issue exists in Advantech WebAccess Version 8.1. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access pages unrestricted (AUTHENTICATION BYPASS).
Advantech Webaccess 8.1
9.8
CVSSv3
CVE-2017-7931
In ABB IP GATEWAY 3.39 and prior, by accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access the configuration files and application pages without authentication.
Abb Ip Gateway Firmware
7.5
CVSSv3
CVE-2016-8346
An issue exists in Moxa EDR-810 Industrial Secure Router. By accessing a specific uniform resource locator (URL) on the web server, a malicious user is able to access configuration and log files (PRIVILEGE ESCALATION).
Moxa Edr-810 Firmware
7.8
CVSSv3
CVE-2021-42563
There is an Unquoted Service Path in NI Service Locator (nisvcloc.exe) in versions before 18.0 on Windows. This may allow an authorized local user to insert arbitrary code into the unquoted service path and escalate privileges.
Ni Ni Service Locator
7.5
CVSSv3
CVE-2016-9368
An issue exists in Eaton xComfort Ethernet Communication Interface (ECI) Versions 1.07 and prior. By accessing a specific uniform resource locator (URL) on the webserver, a malicious user may be able to access files without authenticating.
Eaton Xcomfort Ethernet Communication Interface
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »