Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nnposter vulnerabilities and exploits
(subscribe to this query)
440
VMScore
CVE-2008-2637
Multiple cross-site scripting (XSS) vulnerabilities in F5 FirePass SSL VPN 6.0.2 hotfix 3, and possibly earlier versions, allow remote malicious users to inject arbitrary web script or HTML via quotes in (1) the css_exceptions parameter in vdesk/admincon/webyfiers.php and (2) the...
F5 Firepass Ssl Vpn 6.0.2
2 EDB exploits
435
VMScore
CVE-2008-1510
Cross-site scripting (XSS) vulnerability in system/workplace/admin/accounts/users_list.jsp in Alkacon OpenCMS 7.0.3 allows remote malicious users to inject arbitrary web script or HTML via the (1) searchfilter or (2) listSearchFilter parameter.
Alkacon Opencms 7.0.3
1 EDB exploit
505
VMScore
CVE-2008-0372
8e6 R3000 Internet Filter 2.0.05.33, and other versions prior to 2.0.11, allows remote malicious users to bypass intended restrictions via a fragmented HTTP request.
8e6 R3000 Internet Filter
1 EDB exploit
435
VMScore
CVE-2008-0539
Cross-site scripting (XSS) vulnerability in dms/policy/rep_request.php in F5 BIG-IP Application Security Manager (ASM) 9.4.3 allows remote malicious users to inject arbitrary web script or HTML via the report_type parameter.
F5 Big-ip Application Security Manager
F5 Big-ip Application Security Manager 9.3.0
1 EDB exploit
785
VMScore
CVE-2008-3494
8e6 R3000 Internet Filter 2.0.12.10 allows remote malicious users to bypass intended restrictions via an extra HTTP Host header with additional leading text placed before the real Host header.
8e6 R3000 Internet Filter 2.0.12.10
1 EDB exploit
505
VMScore
CVE-2007-3151
rpttop.htm in the web management interface in Packeteer PacketShaper 7.3.0g2 and 7.5.0g1 allows remote malicious users to cause a denial of service (device reboot) via a request with empty values of the OP.MEAS.DATAQUERY and MEAS.TYPE parameters.
Packeteer Packetshaper 7.3.0g2
Packeteer Packetshaper 7.5.0g1
1 EDB exploit
435
VMScore
CVE-2008-1045
Cross-site scripting (XSS) vulnerability in the file tree navigation function in system/workplace/views/explorer/tree_files.jsp in Alkacon OpenCMS 7.0.3 allows remote malicious users to inject arbitrary web script or HTML via the resource parameter.
Alkacon Opencms 7.0.3
1 EDB exploit
405
VMScore
CVE-2008-1301
Absolute path traversal vulnerability in system/workplace/admin/workplace/logfileview/logfileViewSettings.jsp in Alkacon OpenCms 7.0.3 and 7.0.4 allows remote authenticated administrators to read arbitrary files via a full pathname in the filePath.0 parameter.
Alkacon Opencms 7.0.3
Alkacon Opencms 7.0.4
1 EDB exploit
715
VMScore
CVE-2007-3201
Visual truncation vulnerability in Windows Privacy Tray (WinPT) 1.2.0 allows user-assisted remote malicious users to install a key listed under the wrong user ID, and possibly cause the user to encrypt a victim's correspondence with this attacker-supplied key, via a key ID c...
Winpt Winpt 1.2.0
1 EDB exploit
685
VMScore
CVE-2008-7032
Web Management Console Cross-site request forgery (CSRF) vulnerability in the web management console in F5 BIG-IP 9.4.3 allows remote malicious users to hijack the authentication of administrators for requests that create new administrators and execute shell commands, as demonstr...
F5 Big-ip 9.4.3
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
firmware
CVE-2023-52866
CVE-2024-4367
CVE-2024-1721
CVE-2023-34992
XML injection
CVE-2023-52817
SQL
CVE-2023-52855
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »