Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
remote attackers vulnerabilities and exploits
(subscribe to this query)
5.3
CVSSv3
CVE-2020-35710
Parallels Remote Application Server (RAS) 18 allows remote malicious users to discover an intranet IP address because submission of the login form (even with blank credentials) provides this address to the attacker's client for use as a "host" value. In other words...
Parallels Remote Application Server 18.0
5.4
CVSSv3
CVE-2023-3958
The WP Remote Users Sync plugin for WordPress is vulnerable to Server Side Request Forgery via the 'notify_ping_remote' AJAX function in versions up to, and including, 1.2.12. This can allow authenticated attackers with subscriber-level permissions or above to make web ...
Froger Wp Remote Users Sync
9.8
CVSSv3
CVE-2016-2345
Stack-based buffer overflow in dwrcs.exe in the dwmrcs daemon in SolarWinds DameWare Mini Remote Control 12.0 allows remote malicious users to execute arbitrary code via a crafted string.
Dameware Mini Remote Control 12.0
1 EDB exploit
NA
CVE-2003-0996
Unknown "System Security Vulnerability" in Computer Associates (CA) Unicenter Remote Control (URC) 6.0 allows malicious users to gain privileges via the help interface.
Broadcom Unicenter Remote Control Host 6.0
7.8
CVSSv3
CVE-2022-25031
Remote Desktop Commander Suite Agent before v4.8 contains an unquoted service path which allows malicious users to escalate privileges to the system level.
Rdpsoft Remote Desktop Commander Suite Agent
NA
CVE-2003-0997
Unknown "Denial of Service Attack" vulnerability in Computer Associates (CA) Unicenter Remote Control (URC) 6.0 allows malicious users to cause a denial of service (CPU consumption in URC host service).
Broadcom Unicenter Remote Control Host 6.0
NA
CVE-2006-4237
PHP remote file inclusion vulnerability in pageheaderdefault.inc.php in Invisionix Roaming System Remote (IRSR) 0.2 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the _sysSessionPath parameter.
Invisionix Systems Invisionix Roaming System Remote
1 EDB exploit
7.5
CVSSv3
CVE-2015-1429
Directory traversal vulnerability in Cybele Software Thinfinity Remote Desktop Workstation 3.0.0.3 32-bit and 64-bit allows remote malicious users to download arbitrary files via a .. (dot dot) in an unspecified parameter.
Cybelesoft Thinfinity Remote Desktop Workstation 3.0.0.3
NA
CVE-2014-5647
The ISL Light Remote Desktop (aka com.islonline.isllight.mobile.android) application 2.1.0 for Android does not verify X.509 certificates from SSL servers, which allows man-in-the-middle malicious users to spoof servers and obtain sensitive information via a crafted certificate.
Islonline Isl Light Remote Desktop 2.1.0
NA
CVE-2007-2623
Multiple buffer overflows in RControl.dll in Remote Display Dev kit 1.2.1.0 allow remote malicious users to cause a denial of service (Internet Explorer 7 crash) via (1) a long first argument to the connect function or (2) a long InternalServer property value, possibly involving ...
Fruit2004 Remote Display Development Kit 1.2.10
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7028
memory leak
log injection
CVE-2024-3400
CVE-2022-48695
CVE-2022-48675
CVE-2024-34487
CVE-2024-33792
spoof
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
4
5
6
7
8
9
10
NEXT »