Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trustwave.com vulnerabilities and exploits
(subscribe to this query)
1000
VMScore
CVE-2013-7248
Franklin Fueling Systems TS-550 evo with firmware 2.0.0.6833 and other versions prior to 2.4.0 has a hardcoded password for the roleDiag account, which allows remote malicious users to gain root privileges, as demonstrated using a cmdWebCheckRole action in a TSA_REQUEST.
Franklinfueling Ts-550 Evo Firmware 2.3.1.7492
Franklinfueling Ts-550 Evo Firmware 2.0.0.6833
Franklinfueling Ts-550 Evo -
1 EDB exploit
1000
VMScore
CVE-2011-0885
A certain Comcast Business Gateway configuration of the SMC SMCD3G-CCR with firmware prior to 1.4.0.49.2 has a default password of D0nt4g3tme for the mso account, which makes it easier for remote malicious users to obtain administrative access via the (1) web interface or (2) TEL...
Smc Networks Smcd3g-ccr
Smc Networks Smcd3g-ccr Firmware 1.4.0.42
Smc Networks Smcd3g-ccr Firmware
1 EDB exploit
1000
VMScore
CVE-2010-4233
The Linux installation on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 has a default password of m for the root account, and a default password of merlin for the mg3500 account, which makes it easier for remote malicious ...
Camtron Cmnc-200 Firmware 1.102a-008
Camtron Cmnc-200
Tecvoz Cmnc-200 Firmware 1.102a-008
Tecvoz Cmnc-200
1 EDB exploit
1000
VMScore
CVE-2010-4232
The web-based administration interface on the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote malicious users to bypass authentication via a // (slash slash) at the beginning of a URI, as demonstrated by the //syst...
Camtron Cmnc-200 Firmware 1.102a-008
Camtron Cmnc-200
Tecvoz Cmnc-200 Firmware 1.102a-008
Tecvoz Cmnc-200
1 EDB exploit
945
VMScore
CVE-2012-2627
d4d/uploader.php in the web console in Plixer Scrutinizer (aka Dell SonicWALL Scrutinizer) prior to 9.5.0 allows remote malicious users to create or overwrite arbitrary files in %PROGRAMFILES%\Scrutinizer\snmp\mibs\ via a multipart/form-data POST request.
Sonicwall Scrutinizer
1 EDB exploit
935
VMScore
CVE-2013-4859
INSTEON Hub 2242-222 lacks Web and API authentication
Insteon Hub Firmware 2242-222
1 EDB exploit
935
VMScore
CVE-2013-7246
Buffer overflow in the IconCreate method in an ActiveX control in the DaumGame ActiveX plugin 1.1.0.4 and 1.1.0.5 allows remote malicious users to execute arbitrary code via a long string, as exploited in the wild in January 2014.
Daum Communications Daumgame Activex Control 1.1.0.5
Daum Communications Daumgame Activex Control 1.1.0.4
1 EDB exploit
935
VMScore
CVE-2010-4507
Multiple cross-site request forgery (CSRF) vulnerabilities on the iSpot 2.0.0.0 R1679, and the ClearSpot 2.0.0.0 R1512 and R1786, with firmware 1.9.9.4 allow remote malicious users to hijack the authentication of administrators for requests that (1) execute arbitrary commands via...
Clear Ispot Firmware 1.9.9.4
Clear Ispot 2.0.0.0
Clear Clearspot Firmware 1.9.9.4
Clear Clearspot 2.0.0.0
1 EDB exploit
935
VMScore
CVE-2010-4230
Stack-based buffer overflow in a certain ActiveX control for the Camtron CMNC-200 Full HD IP Camera and TecVoz CMNC-200 Megapixel IP Camera with firmware 1.102A-008 allows remote malicious users to execute arbitrary code via a long string in the first argument to the connect meth...
Camtron Cmnc-200 Firmware 1.102a-008
Camtron Cmnc-200
Tecvoz Cmnc-200 Firmware 1.102a-008
Tecvoz Cmnc-200
1 EDB exploit
910
VMScore
CVE-2013-4863
The HomeAutomationGateway service in MiCasaVerde VeraLite with firmware 1.5.408 allows (1) remote malicious users to execute arbitrary Lua code via a RunLua action in a request to upnp/control/hag on port 49451 or (2) remote authenticated users to execute arbitrary Lua code via a...
Micasaverde Veralite Firmware 1.5.408
2 EDB exploits
1 Github repository
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »