Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-2587
Teltonika’s Remote Management System versions before 4.10.0 contain a cross-site scripting (XSS) vulnerability in the main page of the web interface. An attacker with the MAC address and serial number of a connected device could send a maliciously crafted JSON file with an...
Teltonika Remote Management System
NA
CVE-2023-2588
Teltonika’s Remote Management System versions before 4.10.0 have a feature allowing users to access managed devices’ local secure shell (SSH)/web management services over the cloud proxy. A user can request a web proxy and obtain a URL in the Remote Management System...
Teltonika Remote Management System
445
VMScore
CVE-2022-33995
A path traversal issue in entry attachments in Devolutions Remote Desktop Manager prior to 2022.2 allows malicious users to create or overwrite files in an arbitrary location.
Devolutions Remote Desktop Manager
383
VMScore
CVE-2021-39416
Multiple Cross Site Scripting (XSS) vulnerabilities exists in Remote Clinic v2.0 in (1) patients/register-patient.php via the (a) Contact, (b) Email, (c) Weight, (d) Profession, (e) ref_contact, (f) address, (g) gender, (h) age, and (i) serial parameters; in (2) patients/edit-pat...
Remoteclinic Remote Clinic 2.0
187
VMScore
CVE-2020-8968
Parallels Remote Application Server (RAS) allows a local malicious user to retrieve certain profile password in clear text format by uploading a previously stored cyphered file by Parallels RAS. The confidentiality, availability and integrity of the information of the user could ...
Parallels Remote Application Server
NA
CVE-2023-31068
An issue exists in TSplus Remote Access up to and including 16.0.2.14. There are Full Control permissions for Everyone on some directories under %PROGRAMFILES(X86)%\TSplus\UserDesktop\themes.
Tsplus Tsplus Remote Access
312
VMScore
CVE-2021-30034
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the Symptons field on patients/register-report.php.
Remoteclinic Remote Clinic 2.0
312
VMScore
CVE-2021-30039
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the "Fever" or "Blood Pressure" field on the patients/register-report.php.
Remoteclinic Remote Clinic 2.0
312
VMScore
CVE-2021-30044
Cross Site Scripting (XSS) in Remote Clinic v2.0 via the First Name or Last Name field on staff/register.php.
Remoteclinic Remote Clinic 2.0
NA
CVE-2023-23632
BeyondTrust Privileged Remote Access (PRA) versions 22.2.x to 22.4.x are vulnerable to a local authentication bypass. Attackers can exploit a flawed secret verification process in the BYOT shell jump sessions, allowing unauthorized access to jump items by guessing only the first ...
Beyondtrust Privileged Remote Access
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2024-34413
CVE-2024-34089
CVE-2024-33408
local
SQL
CVE-2024-0402
CVE-2024-33910
CVE-2024-31848
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »