Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
senseofsecurity.com.au vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2009-0540
Cross-site scripting (XSS) vulnerability in Libero 5.3 SP5, and possibly other versions prior to 5.5 SP1, allows remote malicious users to inject arbitrary web script or HTML via the search term field.
Insightinformatics Libero 5.3
NA
CVE-2011-0960
Multiple SQL injection vulnerabilities in Cisco Unified Operations Manager (CUOM) prior to 8.6 allow remote malicious users to execute arbitrary SQL commands via (1) the CCMs parameter to iptm/PRTestCreation.do or (2) the ccm parameter to iptm/TelePresenceReportAction.do, aka Bug...
Cisco Unified Operations Manager 2.2
Cisco Unified Operations Manager 2.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.3
Cisco Unified Operations Manager 2.1
Cisco Unified Operations Manager 8.0
Cisco Unified Operations Manager 2.0.3
1 EDB exploit
NA
CVE-2011-2260
Unspecified vulnerability in the Oracle GlassFish Server component in Oracle Sun Products Suite 2.1.1 allows remote malicious users to affect confidentiality and integrity via unknown vectors related to Administration.
Oracle Sun Products Suite 2.1.1
1 EDB exploit
NA
CVE-2011-0961
Cross-site scripting (XSS) vulnerability in cwhp/device.center.do in the Help servlet in Cisco CiscoWorks Common Services 3.3 and previous versions allows remote malicious users to inject arbitrary web script or HTML via the device parameter, aka Bug ID CSCto12704.
Cisco Ciscoworks Common Services 2.2
Cisco Ciscoworks Common Services
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.0.4
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 1.0
Cisco Ciscoworks Common Services 3.1.1
Cisco Ciscoworks Common Services 3.0
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.0.3
Cisco Ciscoworks Common Services 3.0.5
2 EDB exploits
NA
CVE-2011-0962
Cross-site scripting (XSS) vulnerability in CSCOnm/servlet/com.cisco.nm.help.ServerHelpEngine in the Common Services Device Center in Cisco Unified Operations Manager (CUOM) prior to 8.6 allows remote malicious users to inject arbitrary web script or HTML via the tag parameter, a...
Cisco Unified Operations Manager 2.2
Cisco Unified Operations Manager 2.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.3
Cisco Unified Operations Manager 2.1
Cisco Unified Operations Manager 8.0
Cisco Unified Operations Manager 2.0.3
2 EDB exploits
NA
CVE-2010-0425
modules/arch/win32/mod_isapi.c in mod_isapi in the Apache HTTP Server 2.0.37 up to and including 2.0.63, 2.2.0 up to and including 2.2.14, and 2.3.x prior to 2.3.7, when running on Windows, does not ensure that request processing is complete before calling isapi_unload for an ISA...
Apache Http Server 2.3.0
Apache Http Server 2.3.1
Apache Http Server 2.3.2
Apache Http Server 2.3.3
Apache Http Server 2.3.4
Apache Http Server 2.3.5
Apache Http Server 2.3.6
Apache Http Server 2.0.9
Apache Http Server 2.0.28
Apache Http Server 2.0.32
Apache Http Server 2.0.34
Apache Http Server 2.0.35
Apache Http Server 2.0.36
Apache Http Server 2.0.37
Apache Http Server 2.0.38
Apache Http Server 2.0.39
Apache Http Server 2.0.40
Apache Http Server 2.0.41
Apache Http Server 2.0.42
Apache Http Server 2.0.43
Apache Http Server 2.0.44
Apache Http Server 2.0.45
2 EDB exploits
NA
CVE-2011-0966
Directory traversal vulnerability in cwhp/auditLog.do in the Homepage Auditing component in Cisco CiscoWorks Common Services 3.3 and previous versions allows remote malicious users to read arbitrary files via a .. (dot dot) in the file parameter, aka Bug ID CSCto35577.
Cisco Ciscoworks Common Services 2.2
Cisco Ciscoworks Common Services
Cisco Ciscoworks Common Services 3.0.6
Cisco Ciscoworks Common Services 3.0.4
Cisco Ciscoworks Common Services 3.2
Cisco Ciscoworks Common Services 1.0
Cisco Ciscoworks Common Services 3.1.1
Cisco Ciscoworks Common Services 3.0
Cisco Ciscoworks Common Services 3.1
Cisco Ciscoworks Common Services 3.0.3
Cisco Ciscoworks Common Services 3.0.5
2 EDB exploits
NA
CVE-2009-0541
Multiple cross-site scripting (XSS) vulnerabilities in Magento 1.2.0 and 1.2.1.1 allow remote malicious users to inject arbitrary web script or HTML via (1) the username field in an admin/ request to index.php, possibly related to the login[username] parameter and the app/code/co...
Magentocommerc Magento 1.2.0
Magentocommerc Magento 1.2.1.1
3 EDB exploits
NA
CVE-2011-0959
Multiple cross-site scripting (XSS) vulnerabilities in Cisco Unified Operations Manager (CUOM) prior to 8.6 allow remote malicious users to inject arbitrary web script or HTML via (1) the extn parameter to iptm/advancedfind.do, (2) the deviceInstanceName parameter to iptm/ddv.do,...
Cisco Unified Operations Manager 2.2
Cisco Unified Operations Manager 2.0
Cisco Unified Operations Manager 2.0.1
Cisco Unified Operations Manager
Cisco Unified Operations Manager 2.0.2
Cisco Unified Operations Manager 1.1
Cisco Unified Operations Manager 2.3
Cisco Unified Operations Manager 2.1
Cisco Unified Operations Manager 8.0
Cisco Unified Operations Manager 2.0.3
6 EDB exploits
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started