Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unauthorized vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2004-0671
Brightmail Spamfilter 6.0 and previous versions beta releases allows remote malicious users to read mail from other users by modifying the id parameter in a viewMsgDetails.do request.
Symantec Brightmail Antispam 6.0
1 EDB exploit
2.1
CVSSv2
CVE-2021-1128
A vulnerability in the CLI parser of Cisco IOS XR Software could allow an authenticated, local malicious user to view more information than their privileges allow. The vulnerability is due to insufficient application of restrictions during the execution of a specific command. An ...
Cisco Ios Xr
Cisco Ios Xr 7.2.0
Cisco Ios Xr 7.3.0
10
CVSSv2
CVE-2002-2425
Sun AnswerBook2 1.2 up to and including 1.4.2 allows remote malicious users to execute administrative scripts such as (1) AdminViewError and (2) AdminAddadmin via a direct request.
Sun Solaris Answerbook2 1.2
Sun Solaris Answerbook2 1.4
Sun Solaris Answerbook2 1.4.1
Sun Solaris Answerbook2 1.4.2
Sun Solaris Answerbook2 1.3
1 EDB exploit
5
CVSSv2
CVE-2018-0319
A vulnerability in the password recovery function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote malicious user to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of a password recovery re...
Cisco Prime Collaboration Provisioning
Cisco Prime Collaboration
5
CVSSv2
CVE-2016-1322
The REST interface in Cisco Spark 2015-07-04 allows remote malicious users to bypass intended access restrictions and create arbitrary user accounts via unspecified web requests, aka Bug ID CSCuv72584.
Cisco Spark 2015-07-04 Base
5
CVSSv2
CVE-2017-12363
A vulnerability in Cisco WebEx Meeting Server could allow an unauthenticated, remote malicious user to modify the welcome message of a meeting on an affected system. The vulnerability is due to insufficient security settings on meetings. An attacker could exploit this vulnerabili...
Cisco Webex Meetings Server 2.6.0.8
Cisco Webex Meetings Server 2.7
NA
CVE-2023-20230
A vulnerability in the restricted security domain implementation of Cisco Application Policy Infrastructure Controller (APIC) could allow an authenticated, remote malicious user to read, modify, or delete non-tenant policies (for example, access policies) created by users associa...
Cisco Application Policy Infrastructure Controller
NA
CVE-2022-37255
TP-Link Tapo C310 1.3.0 devices allow access to the RTSP video feed via credentials of User --- and Password TPL075526460603.
Tp-link Tapo C310 Firmware 1.3.0
7.5
CVSSv2
CVE-2018-0130
A vulnerability in the use of JSON web tokens by the web-based service portal of Cisco Elastic Services Controller Software could allow an unauthenticated, remote malicious user to gain administrative access to an affected system. The vulnerability is due to the presence of stati...
Cisco Virtual Managed Services 3.0
5
CVSSv2
CVE-2000-0705
ntop running in web mode allows remote malicious users to read arbitrary files via a .. (dot dot) attack.
Luca Deri Ntop 1.2a7 9
1 EDB exploit
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48654
CVE-2024-2757
authentication bypass
CVE-2024-3194
CVE-2024-33640
CVE-2024-21111
dos
insecure direct object reference
CVE-2024-21345
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »