Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
rgod vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-2143
The affected product is vulnerable to two instances of command injection, which may allow an malicious user to remotely execute arbitrary code.
Advantech Iview
9.8
CVSSv3
CVE-2017-17417
This vulnerability allows remote malicious users to execute arbitrary code on vulnerable installations of Quest NetVault Backup 11.3.0.12. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of NVBUPhaseStatus Acknowledge met...
Quest Netvault Backup 11.3.0.12
1 EDB exploit
9.8
CVSSv3
CVE-2006-7079
Variable extraction vulnerability in include/common.php in exV2 2.0.4.3 and previous versions allows remote malicious users to overwrite arbitrary program variables and conduct directory traversal attacks to execute arbitrary code by modifying the $xoopsOption['pagetype'...
Exv2 Content Management System
1 EDB exploit
NA
CVE-2012-2052
Stack-based buffer overflow in the U3D.8BI library plugin in Adobe Photoshop CS5 12.x prior to 12.0.5 and CS5.1 12.1.x prior to 12.1.1 allows remote malicious users to execute arbitrary code via a long Collada asset element in a DAE file, as demonstrated by the cameraYFov value i...
Adobe Photoshop Cs5.1 12.1
Adobe Photoshop Cs5 12.0
Adobe Photoshop Cs5 12.0.2
Adobe Photoshop Cs5 12.0.4
Adobe Photoshop Cs5 12.0.1
Adobe Photoshop Cs5 12.0.3
1 EDB exploit
NA
CVE-2013-4810
HP ProCurve Manager (PCM) 3.20 and 4.0, PCM+ 3.20 and 4.0, Identity Driven Manager (IDM) 4.0, and Application Lifecycle Management allow remote malicious users to execute arbitrary code via a marshalled object to (1) EJBInvokerServlet or (2) JMXInvokerServlet, aka ZDI-CAN-1760. N...
Hp Application Lifecycle Management -
Hp Procurve Manager 4.0
Hp Identity Driven Manager 4.0
Hp Procurve Manager 3.20
1 EDB exploit
NA
CVE-2012-0874
The (1) JMXInvokerHAServlet and (2) EJBInvokerHAServlet invoker servlets in JBoss Enterprise Application Platform (EAP) prior to 5.2.0, Web Platform (EWP) prior to 5.2.0, BRMS Platform prior to 5.3.1, and SOA Platform prior to 5.3.1 do not require authentication by default in cer...
Redhat Jboss Enterprise Application Platform 5.2.0
Redhat Jboss Enterprise Web Platform 5.2.0
Redhat Jboss Enterprise Brms Platform
1 EDB exploit
NA
CVE-2012-5930
The pa_modify_accounts function in auth.dll in unifid.exe in NetIQ Privileged User Manager 2.3.x prior to 2.3.1 HF2 does not require authentication for the modifyAccounts method, which allows remote malicious users to change the passwords of administrative accounts via a crafted ...
Microfocus Privileged User Manager 2.3.0
Microfocus Privileged User Manager 2.3.1
1 EDB exploit
NA
CVE-2012-5931
Directory traversal vulnerability in the set_log_config function in regclnt.dll in unifid.exe in NetIQ Privileged User Manager 2.3.x prior to 2.3.1 HF2 allows remote authenticated users to create or overwrite arbitrary files via directory traversal sequences in a log pathname.
Microfocus Privileged User Manager 2.3.1
Microfocus Privileged User Manager 2.3.0
1 EDB exploit
NA
CVE-2012-5896
The Annotation Objects Extension ActiveX control in AnnotateX.dll in Quest InTrust 10.4.0.853 and previous versions does not properly implement the Add method, which allows remote malicious users to execute arbitrary code via a memory address in the first argument, related to an ...
Quest Intrust 10.1
Quest Intrust
Quest Intrust 10.4
Quest Intrust 10.3
Quest Intrust 10.2.5
2 EDB exploits
NA
CVE-2012-5897
The (1) SimpleTree and (2) ReportTree classes in the ARDoc ActiveX control (ARDoc.dll) in Quest InTrust 10.4.0.853 and previous versions do not properly implement the SaveToFile method, which allows remote malicious users to write or overwrite arbitrary files via the bstrFileName...
Quest Intrust 10.1
Quest Intrust
Quest Intrust 10.4
Quest Intrust 10.3
Quest Intrust 10.2.5
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-7073
CVE-2024-5496
CVE-2024-5495
XPath injection
bypass
CVE-2024-30043
CVE-2024-24919
denial of service
CVE-2024-35468
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »