Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
management console vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2013-4770
Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x prior to 4.0.1 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Eucalyptus Eucalyptus Management Console
9.6
CVSSv3
CVE-2014-5039
Cross-site scripting (XSS) vulnerability in Eucalyptus Management Console (EMC) 4.0.x prior to 4.0.2 allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Eucalyptus Eucalyptus Management Console
6.1
CVSSv3
CVE-2020-13183
Reflected Cross Site Scripting in Teradici PCoIP Management Console before 20.07 could allow an malicious user to take over the user's active session if the user is exposed to a malicious payload.
Teradici Pcoip Management Console
NA
CVE-2007-6406
Multiple cross-site scripting (XSS) vulnerabilities in CA (formerly Computer Associates) eTrust Threat Management Console allow remote malicious users to inject arbitrary web script or HTML via the IP Address field and other unspecified fields.
Broadcom Etrust Threat Management Console
NA
CVE-2007-6293
Multiple unspecified vulnerabilities in IBM Hardware Management Console (HMC) 6 R1.3 allow malicious users to gain privileges via "some HMC commands."
Ibm Hardware Management Console 6.1.3
NA
CVE-2009-1806
Unspecified vulnerability in IBM Hardware Management Console (HMC) 7 release 3.4.0 SP2, when Active Memory Sharing is used, has unknown impact and attack vectors, related to a shared memory partition and a shared memory pool with redundant paging Virtual I/O Server (VIOS) partiti...
Ibm Hardware Management Console 7.3.4.0
7.5
CVSSv3
CVE-2013-0264
An import error was introduced in Cumin in the code refactoring in r5310. Server certificate validation is always disabled when connecting to Aviary servers, even if the installed packages on a system support it.
Redhat Mrg Management Console R5310
7.2
CVSSv3
CVE-2023-31702
SQL injection in the View User Profile in MicroWorld eScan Management Console 14.0.1400.2281 allows remote malicious user to dump entire database and gain windows XP command shell to perform code execution on database server via GetUserCurrentPwd?UsrId=1.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
9
CVSSv3
CVE-2023-31703
Cross Site Scripting (XSS) in the edit user form in Microworld Technologies eScan management console 14.0.1400.2281 allows remote malicious user to inject arbitrary code via the from parameter.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
9.8
CVSSv3
CVE-2023-33730
Privilege Escalation in the "GetUserCurrentPwd" function in Microworld Technologies eScan Management Console 14.0.1400.2281 allows any remote malicious user to retrieve password of any admin or normal user in plain text format.
Escanav Escan Management Console 14.0.1400.2281
1 Github repository
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4761
command injection
CVE-2024-3676
IDOR
CVE-2024-30039
CVE-2024-32113
CVE-2024-30049
CVE-2024-4776
SQL injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »