Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact

senseofsecurity.com.au vulnerabilities and exploits

(subscribe to this query)
NA
CVE-2009-0540
Cross-site scripting (XSS) vulnerability in Libero 5.3 SP5, and possibly other versions prior to 5.5 SP1, allows remote malicious users to inject arbitrary web script or HTML via the search term field.
Insightinformatics Libero 5.3
NA
CVE-2011-0960
Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager (CUOM) prior to 8.6 allow remote malicious users to execute arbitrary SQL commands via (1) the CCMs parameter to iptm/PRTestCreation.do or (2) the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug...
Cisco Unified Operations Manager 2.2Cisco Unified Operations Manager 2.0Cisco Unified Operations Manager 2.0.1Cisco Unified Operations ManagerCisco Unified Operations Manager 2.0.2Cisco Unified Operations Manager 1.1Cisco Unified Operations Manager 2.3Cisco Unified Operations Manager 2.1Cisco Unified Operations Manager 8.0Cisco Unified Operations Manager 2.0.3
NA
CVE-2011-2260
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Sun Products Suite 2.1.1 allows remote malicious users to affect confidentiality and integrity via unknown vectors related to Administration.
Oracle Sun Products Suite 2.1.1
NA
CVE-2011-0961
Cross-site scripting (XSS) vulnerability in cwhp/device.center.do in the Help servlet in Cisco CiscoWorks Common Services 3.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the device parameter, aka Bug ID CSCto12704.
Cisco Ciscoworks Common Services 2.2Cisco Ciscoworks Common ServicesCisco Ciscoworks Common Services 3.0.6Cisco Ciscoworks Common Services 3.0.4Cisco Ciscoworks Common Services 3.2Cisco Ciscoworks Common Services 1.0Cisco Ciscoworks Common Services 3.1.1Cisco Ciscoworks Common Services 3.0Cisco Ciscoworks Common Services 3.1Cisco Ciscoworks Common Services 3.0.3Cisco Ciscoworks Common Services 3.0.5
NA
CVE-2011-0962
Cross-site scripting (XSS) vulnerability in CSCOnm/servlet/com.cisco.nm.help.ServerHelpEngine in the Common Services Device Center in Cisco Unified Operations Manager (CUOM) prior to 8.6 allows remote malicious users to inject arbitrary web script or HTML via the tag parameter, a...
Cisco Unified Operations Manager 2.2Cisco Unified Operations Manager 2.0Cisco Unified Operations Manager 2.0.1Cisco Unified Operations ManagerCisco Unified Operations Manager 2.0.2Cisco Unified Operations Manager 1.1Cisco Unified Operations Manager 2.3Cisco Unified Operations Manager 2.1Cisco Unified Operations Manager 8.0Cisco Unified Operations Manager 2.0.3
NA
CVE-2010-0425
modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 up to and including 2.0.63, 2.2.0 up to and including 2.2.14, and 2.3.x prior to 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISA...
Apache Http Server 2.3.0Apache Http Server 2.3.1Apache Http Server 2.3.2Apache Http Server 2.3.3Apache Http Server 2.3.4Apache Http Server 2.3.5Apache Http Server 2.3.6Apache Http Server 2.0.9Apache Http Server 2.0.28Apache Http Server 2.0.32Apache Http Server 2.0.34Apache Http Server 2.0.35Apache Http Server 2.0.36Apache Http Server 2.0.37Apache Http Server 2.0.38Apache Http Server 2.0.39Apache Http Server 2.0.40Apache Http Server 2.0.41Apache Http Server 2.0.42Apache Http Server 2.0.43Apache Http Server 2.0.44Apache Http Server 2.0.45
NA
CVE-2011-0966
Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter, aka Bug ID CSCto35577.
Cisco Ciscoworks Common Services 2.2Cisco Ciscoworks Common ServicesCisco Ciscoworks Common Services 3.0.6Cisco Ciscoworks Common Services 3.0.4Cisco Ciscoworks Common Services 3.2Cisco Ciscoworks Common Services 1.0Cisco Ciscoworks Common Services 3.1.1Cisco Ciscoworks Common Services 3.0Cisco Ciscoworks Common Services 3.1Cisco Ciscoworks Common Services 3.0.3Cisco Ciscoworks Common Services 3.0.5
NA
CVE-2009-0541
Multiple cross-site scripting (XSS) vulnerabilities in Magento 1.2.0 and 1.2.1.1 allow remote malicious users to inject arbitrary web script or HTML via (1) the username field in an admin/ request to index.php, possibly related to the login[username] parameter and the app/code/co...
Magentocommerc Magento 1.2.0Magentocommerc Magento 1.2.1.1
NA
CVE-2011-0959
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Operations Manager (CUOM) prior to 8.6 allow remote malicious users to inject arbitrary web script or HTML via (1) the extn parameter to iptm/advancedfind.do, (2) the deviceInstanceName parameter to iptm/ddv.do,...
Cisco Unified Operations Manager 2.2Cisco Unified Operations Manager 2.0Cisco Unified Operations Manager 2.0.1Cisco Unified Operations ManagerCisco Unified Operations Manager 2.0.2Cisco Unified Operations Manager 1.1Cisco Unified Operations Manager 2.3Cisco Unified Operations Manager 2.1Cisco Unified Operations Manager 8.0Cisco Unified Operations Manager 2.0.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693CVE-2024-30851CVE-2024-34460CVE-2024-2887localCVE-2024-27956remote code executionCVE-2024-34475privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook