Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rafael pedrero vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-3903
Multiple cross-site scripting (XSS) vulnerabilities in jspui/index.jsp in ManageEngine Netflow Analyzer 7.5 build 7500 allow remote malicious users to inject arbitrary web script or HTML via the (1) view and (2) section parameters. NOTE: the provenance of this information is unkn...
Manageengine Netflow Analyzer 7.5
6.1
CVSSv3
CVE-2018-19649
XSS exists in InfoVista VistaPortal SE Version 5.1 (build 51029). VPortal/mgtconsole/RolePermissions.jsp has reflected XSS via the ConnPoolName parameter.
Infovista Vistaportal 5.1
7.5
CVSSv3
CVE-2018-19753
Tarantella Enterprise prior to 3.11 allows Directory Traversal.
Oracle Tarantella Enterprise
8.8
CVSSv3
CVE-2018-19754
Tarantella Enterprise prior to 3.11 allows bypassing Access Control.
Oracle Tarantella Enterprise
6.1
CVSSv3
CVE-2018-19765
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "EditCurrentPresentSpace.jsp" has reflected XSS via the ConnPoolName, GroupId, and ParentId parameters.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19766
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "GroupRessourceAdmin.jsp" has reflected XSS via the ConnPoolName parameter.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19767
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "PresentSpace.jsp" has reflected XSS via the ConnPoolName and GroupId parameters.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19768
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "SubPagePackages.jsp" has reflected XSS via the ConnPoolName and GroupId parameters.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19769
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "UserProperties.jsp" has reflected XSS via the ConnPoolName parameter.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19770
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "Users.jsp" has reflected XSS via the ConnPoolName parameter.
Infovista Vistaportal 5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »