Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
system recovery vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2023-49599
An insufficient entropy vulnerability exists in the salt generation functionality of WWBN AVideo dev master commit 15fed957fb. A specially crafted series of HTTP requests can lead to privilege escalation. An attacker can gather system information via HTTP requests and brute force...
Wwbn Avideo 15fed957fb
9.8
CVSSv3
CVE-2023-40760
User enumeration is found in PHP Jabbers Hotel Booking System v4.0. This issue occurs during password recovery, where a difference in messages could allow an malicious user to determine if the user is valid or not, enabling a brute force attack with valid users.
Phpjabbers Hotel Booking System 4.0
9.8
CVSSv3
CVE-2023-3346
Buffer Copy without Checking Size of Input ('Classic Buffer Overflow') vulnerability in MITSUBSHI CNC Series allows a remote unauthenticated malicious user to cause Denial of Service (DoS) condition and execute arbitrary code on the product by sending specially crafted ...
Mitsubishielectric C80 Firmware -
Mitsubishielectric E70 Firmware -
Mitsubishielectric E80 Firmware -
Mitsubishielectric M70v Firmware -
Mitsubishielectric M720vs Firmware -
Mitsubishielectric M720vs 15-type Firmware -
Mitsubishielectric M720vw Firmware -
Mitsubishielectric M730vs Firmware -
Mitsubishielectric M730vs 15-type Firmware -
Mitsubishielectric M730vw Firmware -
Mitsubishielectric M750vs Firmware -
Mitsubishielectric M750vs 15-type Firmware -
Mitsubishielectric M750vw Firmware -
Mitsubishielectric M80 Firmware -
Mitsubishielectric M800s Firmware -
Mitsubishielectric M800vs Firmware -
Mitsubishielectric M800vw Firmware -
Mitsubishielectric M800w Firmware -
Mitsubishielectric M80v Firmware -
Mitsubishielectric M80vw Firmware -
Mitsubishielectric M80w Firmware -
9.8
CVSSv3
CVE-2023-3007
A vulnerability was found in ningzichun Student Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file resetPassword.php of the component Password Reset Handler. The manipulation of the argument sid leads to weak pas...
Student Management System Project Student Management System 1.0
9.8
CVSSv3
CVE-2023-1950
A vulnerability has been found in PHPGurukul BP Monitoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file password-recovery.php of the component Password Recovery. The manipulation of the argument emailid/c...
Phpgurukul Bp Monitoring Management System 1.0
9.8
CVSSv3
CVE-2022-47377
Password recovery vulnerability in SICK SIM2000ST Partnumber 2086502 with firmware version <1.13.4 allows an unprivileged remote malicious user to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mechanism method. This leads to a...
Sick Sim2000 Firmware
9.8
CVSSv3
CVE-2022-27584
Password recovery vulnerability in SICK SIM2000ST Partnumber 1080579 allows an unprivileged remote malicious user to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mechanism method. This leads to an increase in their privileges on...
Sick Sim2000st Firmware -
9.8
CVSSv3
CVE-2022-27586
Password recovery vulnerability in SICK SIM1004 Partnumber 1098148 with firmware version <2.0.0 allows an unprivileged remote malicious user to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mechanism method. This leads to an i...
Sick Sim1004-0p0g311 Firmware
9.8
CVSSv3
CVE-2022-27582
Password recovery vulnerability in SICK SIM4000 (PPC) Partnumber 1078787 allows an unprivileged remote malicious user to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mechanism method. This leads to an increase in their privilege...
Sick Sim2000 Firmware
Sick Sim2000st Firmware
Sick Sim2500 Firmware
Sick Sim1012 Firmware
Sick Sim1004 Firmware
Sick Sim1000 Fx Firmware
Sick Sim4000 Firmware
9.8
CVSSv3
CVE-2022-27585
Password recovery vulnerability in SICK SIM1000 FX Partnumber 1097816 and 1097817 with firmware version <1.6.0 allows an unprivileged remote malicious user to gain access to the userlevel defined as RecoverableUserLevel by invocating the password recovery mechanism method. Thi...
Sick Sim1000 Fx Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »