Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2020-4902
IBM Datacap Taskmaster Capture (IBM Datacap Navigator 9.1.7) is vulnerable to SQL injection. A remote attacker could send specially crafted SQL statements, which could allow the malicious user to view, add, modify or delete information in the back-end database. IBM X-Force ID: 19...
Ibm Datacap Navigator 9.1.7
6.5
CVSSv3
CVE-2020-4904
IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 is vulnerable to cross-site request forgery which could allow an malicious user to execute malicious and unauthorized actions transmitted from a user that the website trusts.
Ibm Financial Transaction Manager For Multiplatform 3.2.4
5.9
CVSSv3
CVE-2020-4905
IBM Financial Transaction Manager for SWIFT Services for Multiplatforms 3.2.4 could allow an remote malicious user to obtain sensitive information, caused by a man in the middle attack. By SSL striping, an attacker could exploit this vulnerability to obtain sensitive information.
Ibm Financial Transaction Manager For Multiplatform 3.2.4
9.1
CVSSv3
CVE-2020-36242
In the cryptography package prior to 3.3.2 for Python, certain sequences of update calls to symmetrically encrypt multi-GB values could result in an integer overflow and buffer overflow, as demonstrated by the Fernet class.
Cryptography.io Cryptography
Fedoraproject Fedora 33
Oracle Communications Cloud Native Core Network Function Cloud Native Environment 1.10.0
1 Github repository
8.8
CVSSv3
CVE-2020-36245
GramAddict up to and including 1.2.3 allows remote malicious users to execute arbitrary code because of use of UIAutomator2 and ATX-Agent. The attacker must be able to reach TCP port 7912, e.g., by being on the same Wi-Fi network.
Gramaddict Gramaddict
8.8
CVSSv3
CVE-2020-36247
Open OnDemand prior to 1.5.7 and 1.6.x prior to 1.6.22 allows CSRF.
Osc Open Ondemand
4.6
CVSSv3
CVE-2020-36248
The ownCloud application prior to 2.15 for Android allows malicious users to use adb to include a PIN preferences value in a backup archive, and consequently bypass the PIN lock feature by restoring from this archive.
Owncloud Owncloud
7.5
CVSSv3
CVE-2020-36249
The File Firewall prior to 2.8.0 for ownCloud Server does not properly enforce file-type restrictions for public shares.
Owncloud File Firewall
7.8
CVSSv3
CVE-2020-3625
When making query to DSP capabilities, Stack out of bounds occurs due to wrong buffer length configured for DSP attributes in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Mobile in SM8250, SXR2130
Qualcomm Sm8250 Firmware -
Qualcomm Sxr2130 Firmware -
4.6
CVSSv3
CVE-2020-36250
In the ownCloud application prior to 2.15 for Android, the lock protection mechanism can be bypassed by moving the system date/time into the past.
Owncloud Owncloud
Preferred Score:
CVSSv3
CVSSv2
CVSSv3
CVSSv4
EPSS
VMScore
Recommendations:
path traversal
CVE-2025-2657
CVE-2025-30066
CVE-2025-24813
apache commons vfs
CVE-2025-2478
validation
CVE-2025-2674
code injection
medical card generation system
microsoft edge (chromium-based)
CVE-2025-2688
cicadascms
Home
/
Search Results
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »
Vulmon