Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
log injection vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-1117
Directory traversal vulnerability in the Notes (aka Flash Notes or instant messages) feature in tb2ftp.dll in Timbuktu Pro 8.6.5 for Windows, and possibly 8.7 for Mac OS X, allows remote malicious users to upload files to arbitrary locations via a destination filename with a \ (b...
Netopia Timbuktu Pro 8.6.5
3 EDB exploits
7.8
CVSSv3
CVE-2021-1448
A vulnerability in the CLI of Cisco Firepower Threat Defense (FTD) Software could allow an authenticated, local malicious user to execute arbitrary commands with root privileges on the underlying operating system of an affected device that is running in multi-instance mode. This ...
Cisco Firepower Threat Defense
7.2
CVSSv3
CVE-2019-1756
A vulnerability in Cisco IOS XE Software could allow an authenticated, remote malicious user to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability occurs because the affected software improperly sanitizes user-supplied inp...
Cisco Ios 11.0\\(20.3\\)
Cisco Ios Xe 16.8.1s
Cisco Ios Xe 16.8.2
Cisco Ios Xe 16.7.1b
Cisco Ios Xe 16.8.1
Cisco Ios 16.9\\(1\\)
Cisco Ios Xe 16.8.1a
Cisco Ios Xe 16.7.1
Cisco Ios Xe 16.7.2
Cisco Ios Xe 16.8.1d
Cisco Ios Xe 16.7.3
Cisco Ios Xe 16.7.1a
Cisco Ios Xe 16.8.1b
Cisco Ios Xe 3.2.0ja
Cisco Ios Xe 16.8.1c
Cisco Ios Xe 16.8.1e
4.3
CVSSv3
CVE-2019-10963
Moxa EDR 810, all versions 5.1 and prior, allows an unauthenticated malicious user to be able to retrieve some log files from the device, which may allow sensitive information disclosure. Log files must have previously been exported by a legitimate user.
Moxa Edr-810 Firmware
1 EDB exploit
6.1
CVSSv3
CVE-2019-10887
A reflected HTML injection vulnerability on Salicru SLC-20-cube3(5) devices running firmware version cs121-SNMP v4.54.82.130611 allows remote malicious users to inject arbitrary HTML elements via a /DataLog.csv?log= or /AlarmLog.csv?log= or /waitlog.cgi?name= or /chart.shtml?data...
Salicru Slc-20-cube3\\(5\\) Cs121-snmp 4.54.82.130611
1 EDB exploit
6.7
CVSSv3
CVE-2018-0477
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local malicious user to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exist because the affected software improperly sanitizes c...
Cisco Ios Xe 16.7\\(1\\)
Cisco Ios Xe 16.7.1
Cisco Ios Xe 15.3\\(3\\)s3.16
6.7
CVSSv3
CVE-2018-0481
A vulnerability in the CLI parser of Cisco IOS XE Software could allow an authenticated, local malicious user to execute commands on the underlying Linux shell of an affected device with root privileges. The vulnerability exist because the affected software improperly sanitizes c...
Cisco Ios Xe 15.3\\(3\\)s3.16
Cisco Ios Xe 16.7.1
Cisco Ios Xe 16.7\\(1\\)
7.8
CVSSv3
CVE-2018-0193
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local malicious user to inject arbitrary commands into the CLI of the affected software, which could allow the malicious user to gain access to the underlying Linux shell of an affec...
Cisco Ios Xe
7.8
CVSSv3
CVE-2018-0194
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local malicious user to inject arbitrary commands into the CLI of the affected software, which could allow the malicious user to gain access to the underlying Linux shell of an affec...
Cisco Ios Xe
7.8
CVSSv3
CVE-2018-0182
Multiple vulnerabilities in the CLI parser of Cisco IOS XE Software could allow an authenticated, local malicious user to inject arbitrary commands into the CLI of the affected software, which could allow the malicious user to gain access to the underlying Linux shell of an affec...
Cisco Ios Xe
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
race condition
CVE-2024-4249
CVE-2024-4244
CVE-2023-20198
TCP
CVE-2022-48648
CVE-2022-48636
CVE-2024-21345
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »