Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rafael pedrero vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2018-20193
Certain Secure Access SA Series SSL VPN products (originally developed by Juniper Networks but now sold and supported by Pulse Secure, LLC) allow privilege escalation, as demonstrated by Secure Access SSL VPN SA-4000 5.1R5 (build 9627) 4.2 Release (build 7631). This occurs becaus...
Pulsesecure Secure Access Series Ssl Vpn Sa-4000 4.2
Pulsesecure Secure Access Series Ssl Vpn Sa-4000 5.1r5
7.8
CVSSv3
CVE-2018-20211
ExifTool 8.32 allows local users to gain privileges by creating a %TEMP%\par-%username%\cache-exiftool-8.32 folder with a victim's username, and then copying a Trojan horse ws32_32.dll file into this new folder, aka DLL Hijacking. NOTE: 8.32 is an obsolete version from 2010 ...
Exiftool Project Exiftool 8.32
9.8
CVSSv3
CVE-2018-19861
Buffer overflow in MiniShare 1.4.1 and previous versions allows remote malicious users to execute arbitrary code via a long HTTP HEAD request. NOTE: this product is discontinued.
Minishare Project Minishare
9.8
CVSSv3
CVE-2018-19862
Buffer overflow in MiniShare 1.4.1 and previous versions allows remote malicious users to execute arbitrary code via a long HTTP POST request. NOTE: this product is discontinued.
Minishare Project Minishare
6.1
CVSSv3
CVE-2019-9206
PRTG Network Monitor v7.1.3.3378 allows XSS via the /public/login.htm errormsg or loginurl parameter. NOTE: This product is discontinued.
Paessler Prtg Network Monitor 7.1.3.3378
6.1
CVSSv3
CVE-2019-9207
PRTG Network Monitor v7.1.3.3378 allows XSS via the /search.htm searchtext parameter. NOTE: This product is discontinued.
Paessler Prtg Network Monitor 7.1.3.3378
6.1
CVSSv3
CVE-2018-19439
XSS exists in the Administration Console in Oracle Secure Global Desktop 4.4 20080807152602 (but was fixed in later versions including 5.4). helpwindow.jsp has reflected XSS via all parameters, as demonstrated by the sgdadmin/faces/com_sun_web_ui/help/helpwindow.jsp windowTitle p...
Oracle Secure Global Desktop 4.4
6.1
CVSSv3
CVE-2018-19649
XSS exists in InfoVista VistaPortal SE Version 5.1 (build 51029). VPortal/mgtconsole/RolePermissions.jsp has reflected XSS via the ConnPoolName parameter.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19765
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "EditCurrentPresentSpace.jsp" has reflected XSS via the ConnPoolName, GroupId, and ParentId parameters.
Infovista Vistaportal 5.1
6.1
CVSSv3
CVE-2018-19767
Cross Site Scripting exists in InfoVista VistaPortal SE Version 5.1 (build 51029). The page "PresentSpace.jsp" has reflected XSS via the ConnPoolName and GroupId parameters.
Infovista Vistaportal 5.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
SSTI
CVE-2024-35863
CVE-2024-35910
man-in-the-middle
CVE-2024-35912
CVE-2024-25742
LFI
CVE-2024-32002
CVE-2024-22120
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »