Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
nu11secur1ty vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-8597
eap.c in pppd in ppp 2.4.2 up to and including 2.4.8 has an rhostname buffer overflow in the eap_request and eap_response functions.
Point-to-point Protocol Project Point-to-point Protocol
Wago Pfc Firmware
Debian Debian Linux 9.0
Debian Debian Linux 10.0
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.04
Canonical Ubuntu Linux 14.04
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 12.04
6 Github repositories
9.8
CVSSv3
CVE-2020-2555
Vulnerability in the Oracle Coherence product of Oracle Fusion Middleware (component: Caching,CacheStore,Invocation). Supported versions that are affected are 3.7.1.0, 12.1.3.0.0, 12.2.1.3.0 and 12.2.1.4.0. Easily exploitable vulnerability allows unauthenticated attacker with net...
Oracle Webcenter Portal 12.2.1.3.0
Oracle Utilities Framework 4.2.0.3.0
Oracle Utilities Framework 4.2.0.2.0
Oracle Retail Assortment Planning 15.0
Oracle Utilities Framework 4.4.0.0.0
Oracle Retail Assortment Planning 16.0
Oracle Coherence 12.2.1.3.0
Oracle Coherence 12.1.3.0.0
Oracle Coherence 3.7.1.0
Oracle Coherence 12.2.1.4.0
Oracle Webcenter Portal 12.2.1.4.0
Oracle Rapid Planning 12.1
Oracle Rapid Planning 12.2
Oracle Utilities Framework
Oracle Utilities Framework 4.4.0.2.0
Oracle Communications Diameter Signaling Router
Oracle Healthcare Data Repository 7.0.1
Oracle Commerce Platform
Oracle Commerce Platform 11.0.0
Oracle Commerce Platform 11.1.0
Oracle Commerce Platform 11.2.0
21 Github repositories
1 Article
8.8
CVSSv3
CVE-2023-29849
Bang Resto 1.0 exists to contain multiple SQL injection vulnerabilities via the btnMenuItemID, itemID, itemPrice, menuID, staffID, or itemqty parameter.
Hockeycomputindo Bang Resto 1.0
8.8
CVSSv3
CVE-2022-28079
College Management System v1.0 exists to contain a SQL injection vulnerability via the course_code parameter.
College Management System Project College Management System 1.0
8.8
CVSSv3
CVE-2021-28242
SQL Injection in the "evoadm.php" component of b2evolution v7.2.2-stable allows remote malicious users to obtain sensitive database information by injecting SQL commands into the "cf_name" parameter when creating a new filter under the "Collections" ...
B2evolution B2evolution 7.2.2
8.8
CVSSv3
CVE-2020-0022
In reassemble_and_dispatch of packet_fragmenter.cc, there is possible out of bounds write due to an incorrect bounds calculation. This could lead to remote code execution over Bluetooth with no additional execution privileges needed. User interaction is not needed for exploitatio...
Google Android 8.0
Google Android 8.1
Google Android 9.0
Google Android 10.0
Huawei Mate 20 Firmware
Huawei Mate 20 Pro Firmware
Huawei Mate 20 X Firmware
Huawei P Smart Firmware
Huawei P Smart 2019 Firmware
Huawei P20 Firmware
Huawei P20 Pro Firmware
Huawei P30 Firmware
Huawei P30 Pro Firmware
Huawei Y6 2019 Firmware
Huawei Y6 Pro 2019 Firmware
Huawei Y9 2019 Firmware
Huawei Nova 3 Firmware
Huawei Nova Lite 3 Firmware
Huawei Honor 8a Firmware
Huawei Honor 8x Firmware
Huawei Honor View 20 Firmware
Huawei Mate 30 Pro Firmware
10 Github repositories
1 Article
8.1
CVSSv3
CVE-2021-36621
Sourcecodester Online Covid Vaccination Scheduler System 1.0 is vulnerable to SQL Injection. The username parameter is vulnerable to time-based SQL injection. Upon successful dumping the admin password hash, an attacker can decrypt and obtain the plain-text password. Hence, the a...
Online Covid Vaccination Scheduler System Project Online Covid Vaccination Scheduler System 1.0
7.8
CVSSv3
CVE-2023-33148
Microsoft Office Elevation of Privilege Vulnerability
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office 2013
Microsoft Office 2021
7.8
CVSSv3
CVE-2023-33137
Microsoft Excel Remote Code Execution Vulnerability
Microsoft Office 2013
Microsoft Office Online Server -
Microsoft Office 2016
Microsoft Office 2019
1 Github repository
7.8
CVSSv3
CVE-2023-28285
Microsoft Office Remote Code Execution Vulnerability
Microsoft Office 2019
Microsoft 365 Apps -
Microsoft Office Long Term Servicing Channel 2021
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »