Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ui vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-2373
A vulnerability, which was classified as critical, was found in Ubiquiti EdgeRouter X up to 2.0.9-hotfix.6. This affects an unknown part of the component Web Management Interface. The manipulation of the argument ecn-up leads to command injection. It is possible to initiate the a...
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
NA
CVE-2022-43553
A remote code execution vulnerability in EdgeRouters (Version 2.0.9-hotfix.4 and previous versions) allows a malicious actor with an operator account to run arbitrary administrator commands.This vulnerability is fixed in Version 2.0.9-hotfix.5 and later.
Ui Edgemax Edgerouter Firmware
Ui Edgemax Edgerouter Firmware 2.0.9
445
VMScore
CVE-2022-25508
An access control issue in the component /ManageRoute/postRoute of FreeTAKServer v1.9.8 allows unauthenticated malicious users to cause a Denial of Service (DoS) via an unusually large amount of created routes, or create unsafe or false routes for legitimate users.
Freetakserver-ui Project Freetakserver-ui 1.9.8
578
VMScore
CVE-2022-25510
FreeTAKServer 1.9.8 contains a hardcoded Flask secret key which allows malicious users to create crafted cookies to bypass authentication or escalate privileges.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2020-27888
An issue exists on Ubiquiti UniFi Meshing Access Point UAP-AC-M 4.3.21.11325 and UniFi Controller 6.0.28 devices. Cached credentials are not erased from an access point returning wirelessly from a disconnected state. This may provide unintended network access.
Ui Unifi Meshing Access Point Firmware 4.3.21.11325
Ui Unifi Controller Firmware 6.0.28
356
VMScore
CVE-2022-25506
FreeTAKServer-UI v1.9.8 exists to contain a SQL injection vulnerability via the API endpoint /AuthenticateUser.
Freetakserver-ui Project Freetakserver-ui 1.9.8
312
VMScore
CVE-2022-25507
FreeTAKServer-UI v1.9.8 exists to contain a stored cross-site scripting (XSS) vulnerability via the Callsign parameter.
Freetakserver-ui Project Freetakserver-ui 1.9.8
356
VMScore
CVE-2022-25511
An issue in the ?filename= argument of the route /DataPackageTable in FreeTAKServer-UI v1.9.8 allows malicious users to place arbitrary files anywhere on the system.
Freetakserver-ui Project Freetakserver-ui 1.9.8
445
VMScore
CVE-2022-25512
FreeTAKServer-UI v1.9.8 exists to leak sensitive API and Websocket keys.
Freetakserver-ui Project Freetakserver-ui 1.9.8
516
VMScore
CVE-2018-3059
Vulnerability in the Siebel UI Framework component of Oracle Siebel CRM (subcomponent: UIF Open UI). Supported versions that are affected are 18.7, 18.8 and 18.9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Siebel UI...
Oracle Siebel Ui Framework 18.9
Oracle Siebel Ui Framework 18.8
Oracle Siebel Ui Framework 18.7
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »