Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
trustwave.com vulnerabilities and exploits
(subscribe to this query)
605
VMScore
CVE-2011-1372
The Web User Interface on the IBM TS3100 and TS3200 tape libraries with firmware before A.60 allows remote malicious users to bypass authentication and obtain administrative access via unspecified vectors.
Ibm Ts3200 Tape Library Firmware
Ibm Ts3100 Tape Library Firmware
Ibm Ts3100 Tape Library
Ibm Ts3200 Tape Library
445
VMScore
CVE-2011-3580
IceWarp WebMail in IceWarp Mail Server prior to 10.3.3 allows remote malicious users to obtain configuration information via a direct request to the /server URI, which triggers a call to the phpinfo function.
Icewarp Mail Server 10.0.7
Icewarp Mail Server 10.0.8
Icewarp Mail Server 10.0.3
Icewarp Mail Server 10.0.4
Icewarp Mail Server 10.2.1
Icewarp Mail Server 10.2.2
Icewarp Mail Server 9.4.1
Icewarp Mail Server 9.4.0
Icewarp Mail Server 10.1.2
Icewarp Mail Server 10.1.3
Icewarp Mail Server 9.3.1
Icewarp Mail Server 9.3.2
Icewarp Mail Server 10.1.1
Icewarp Mail Server 10.3.0
Icewarp Mail Server 9.3.0
Icewarp Mail Server 9.4.2
Icewarp Mail Server 10.3.1
Icewarp Mail Server 10.1.4
Icewarp Mail Server 10.2.0
Icewarp Mail Server
383
VMScore
CVE-2009-1202
WebVPN on the Cisco Adaptive Security Appliances (ASA) device with software 8.0(4), 8.1.2, and 8.2.1 allows remote malicious users to bypass certain protection mechanisms involving URL rewriting and HTML rewriting, and conduct cross-site scripting (XSS) attacks, by modifying the ...
Cisco Adaptive Security Appliance 8.2.1
Cisco Adaptive Security Appliance 8.1.2
Cisco Adaptive Security Appliance 8.0\\(4\\)
Cisco Adaptive Security Appliance
NA
CVE-2010-4244
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: CVE-2010-4234. Reason: This candidate is a duplicate of CVE-2010-4234. A typo caused the wrong ID to be used. Notes: All CVE users should reference CVE-2010-4234 instead of this candidate. All references and descripti...
445
VMScore
CVE-2013-1194
The ISAKMP implementation on Cisco Adaptive Security Appliances (ASA) devices generates different responses for IKE aggressive-mode messages depending on whether invalid VPN groups are specified, which allows remote malicious users to enumerate groups via a series of messages, ak...
Cisco Adaptive Security Appliance Software -
Cisco Adaptive Security Appliance
383
VMScore
CVE-2011-4782
Cross-site scripting (XSS) vulnerability in libraries/config/ConfigFile.class.php in the setup interface in phpMyAdmin 3.4.x prior to 3.4.9 allows remote malicious users to inject arbitrary web script or HTML via the host parameter.
Phpmyadmin Phpmyadmin 3.4.5.0
Phpmyadmin Phpmyadmin 3.4.0.0
Phpmyadmin Phpmyadmin 3.4.3.1
Phpmyadmin Phpmyadmin 3.4.6.0
Phpmyadmin Phpmyadmin 3.4.4.0
Phpmyadmin Phpmyadmin 3.4.1.0
Phpmyadmin Phpmyadmin 3.4.2.0
Phpmyadmin Phpmyadmin 3.4.8.0
Phpmyadmin Phpmyadmin 3.4.3.0
Phpmyadmin Phpmyadmin 3.4.7.0
Phpmyadmin Phpmyadmin 3.4.3.2
383
VMScore
CVE-2012-1262
Cross-site scripting (XSS) vulnerability in cgi-bin/mt/mt-wizard.cgi in Movable Type prior to 4.38, 5.0x prior to 5.07, and 5.1x prior to 5.13, when the product is incompletely installed, allows remote malicious users to inject arbitrary web script or HTML via the dbuser paramete...
Movabletype Movable Type Open Source 5.04
Movabletype Movable Type Open Source 5.031
Movabletype Movable Type Open Source 4.34
Movabletype Movable Type Open Source 4.33
Movabletype Movable Type Open Source 4.2
Movabletype Movable Type Open Source 4.1
Movabletype Movable Type Open Source 5.12
Movabletype Movable Type Open Source 5.11
Movabletype Movable Type Open Source 5.03
Movabletype Movable Type Open Source 5.02
Movabletype Movable Type Open Source 4.32
Movabletype Movable Type Open Source 4.31
Movabletype Movable Type Open Source 4.3
Movabletype Movable Type Open Source 4.0
Movabletype Movable Type Open Source 5.05
Movabletype Movable Type Open Source 5.1
Movabletype Movable Type Open Source 4.36
Movabletype Movable Type Open Source 4.35
Movabletype Movable Type Open Source 4.25
Movabletype Movable Type Open Source 4.23
Movabletype Movable Type Open Source 5.06
Movabletype Movable Type Open Source 5.051
578
VMScore
CVE-2013-4619
Multiple SQL injection vulnerabilities in OpenEMR 4.1.1 allow remote authenticated users to execute arbitrary SQL commands via the (1) start or (2) end parameter to interface/reports/custom_report_range.php, or the (3) form_newid parameter to custom/chart_tracker.php.
Open-emr Openemr 4.1.1
739
VMScore
CVE-2013-4860
Radio Thermostat CT80 And CT50 with firmware 1.4.64 and previous versions does not restrict access to the API, which allows remote malicious users to change the operation mode, wifi connection settings, temperature thresholds, and other settings via unspecified vectors.
Radiothermostat Ct50 Firmware
Radiothermostat Ct50 -
Radiothermostat Ct80 Firmware
Radiothermostat Ct80 -
294
VMScore
CVE-2013-4866
The LIXIL Corporation My SATIS Genius Toilet application for Android has a hardcoded Bluetooth PIN, which allows physically proximate malicious users to trigger physical resource consumption (water or heat) or user discomfort.
Lixil My Satis Genius Toilet -
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »