Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2023-31998
A heap overflow vulnerability found in EdgeRouters and Aircubes allows a malicious actor to interrupt UPnP service to said devices.
Ui Edgemax Edgerouter Firmware 2.0.9
Ui Aircube Firmware
8.8
CVSSv3
CVE-2022-43553
A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and previous versions) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later.
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
6.5
CVSSv3
CVE-2022-25506
FreeTAKServer-UI v1.9.8 exists to contain a SQL injection vulnerability via the API endpoint /AuthenticateUser.
Freetakserver-ui Project Freetakserver-ui 1.9.8
5.4
CVSSv3
CVE-2022-25507
FreeTAKServer-UI v1.9.8 exists to contain a stored cross-site scripting (XSS) vulnerability via the Callsign parameter.
Freetakserver-ui Project Freetakserver-ui 1.9.8
7.5
CVSSv3
CVE-2022-25508
An access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 allows unauthenticated malicious users to cause a Denial of Service (DoS) via an unusually large amount of created routes, or create unsafe or false routes for legitimate users.
Freetakserver-ui Project Freetakserver-ui 1.9.8
8.8
CVSSv3
CVE-2022-25510
FreeTAKServer 1.9.8 contains a hardcoded Flask secret key which allows malicious users to create crafted cookies to bypass authentication or escalate privileges.
Freetakserver-ui Project Freetakserver-ui 1.9.8
6.5
CVSSv3
CVE-2022-25511
An issue in the ?filename= argument of the route /DataPackageTable in FreeTAKServer-UI v1.9.8 allows malicious users to place arbitrary files anywhere on the system.
Freetakserver-ui Project Freetakserver-ui 1.9.8
7.5
CVSSv3
CVE-2022-25512
FreeTAKServer-UI v1.9.8 exists to leak sensitive API and Websocket keys.
Freetakserver-ui Project Freetakserver-ui 1.9.8
7.5
CVSSv3
CVE-2020-27888
An issue exists on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly from a disconnected state. This may provide unintended network access.
Ui Unifi Meshing Access Point Firmware 4.3.21.11325
Ui Unifi Controller Firmware 6.0.28
6.1
CVSSv3
CVE-2018-3059
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI). Supported versions that are affected are 18.7, 18.8 and 18.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI...
Oracle Siebel Ui Framework 18.9
Oracle Siebel Ui Framework 18.8
Oracle Siebel Ui Framework 18.7
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »