Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unauthorized vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2003-1176
post_message_form.asp in Web Wiz Forums 6.34 up to and including 7.5, when quote mode is used, allows remote malicious users to read or write to private forums by modifying the FID (forum ID) parameter.
Bdc Enterprises Web Wiz Forums 6.34
Bdc Enterprises Web Wiz Forums 7.01
Bdc Enterprises Web Wiz Forums 7.5
1 EDB exploit
NA
CVE-2006-2945
Unspecified vulnerability in the user profile change functionality in DokuWiki, when Access Control Lists are enabled, allows remote authenticated users to read unauthorized files via unknown attack vectors.
Andreas Gohr Dokuwiki Release 2004-08-08
Andreas Gohr Dokuwiki Release 2004-08-15a
Andreas Gohr Dokuwiki Release 2004-11-02
Andreas Gohr Dokuwiki Release 2004-11-10
Andreas Gohr Dokuwiki Release 2005-07-13
Andreas Gohr Dokuwiki Release 2005-09-19
Andreas Gohr Dokuwiki Release 2004-07-07
Andreas Gohr Dokuwiki Release 2004-07-12
Andreas Gohr Dokuwiki Release 2004-09-25
Andreas Gohr Dokuwiki Release 2004-09-30
Andreas Gohr Dokuwiki Release 2005-01-16a
Andreas Gohr Dokuwiki Release 2005-02-06
Andreas Gohr Dokuwiki Release 2005-02-18
Andreas Gohr Dokuwiki
Andreas Gohr Dokuwiki Release 2004-07-04
Andreas Gohr Dokuwiki Release 2004-08-22
Andreas Gohr Dokuwiki Release 2004-09-12
Andreas Gohr Dokuwiki Release 2005-01-14
Andreas Gohr Dokuwiki Release 2005-01-15
Andreas Gohr Dokuwiki Release 2005-09-22
Andreas Gohr Dokuwiki Release 2006-03-05
Andreas Gohr Dokuwiki Release 2004-07-21
6.7
CVSSv3
CVE-2018-0294
A vulnerability in the write-erase feature of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local malicious user to configure an unauthorized administrator account for an affected device. The vulnerability exists because the affected software does not...
Cisco Nx-os 7.3\\(2\\)n1\\(0.354\\)
Cisco Nx-os 5.2\\(1\\)sv3\\(1.10\\)
Cisco Nx-os 8.8\\(3.5\\)s0
Cisco Nx-os 7.0\\(3\\)i2\\(4a\\)
Cisco Firepower Extensible Operating System
Cisco Fxos
Cisco Nx-os 4.1\\(2\\)e1\\(1a\\)
NA
CVE-2007-2429
ManageEngine PasswordManager Pro (PMP) allows remote malicious users to obtain administrative access to a database by injecting a certain command line for the mysql program, as demonstrated by the "-port 2345" and "-u root" arguments. NOTE: the provenance of t...
Manageengine Passwordmanager Pro
1 EDB exploit
NA
CVE-2002-1217
Cross-Frame scripting vulnerability in the WebBrowser control as used in Internet Explorer 5.5 and 6.0 allows remote malicious users to execute arbitrary code, read arbitrary files, or conduct other unauthorized activities via script that accesses the Document property, which byp...
Microsoft Internet Explorer 5.5
Microsoft Internet Explorer 6.0
1 EDB exploit
4.4
CVSSv3
CVE-2019-1600
A vulnerability in the file system permissions of Cisco FXOS Software and Cisco NX-OS Software could allow an authenticated, local malicious user to access sensitive information that is stored in the file system of an affected system. The vulnerability is due to improper implemen...
Cisco Firepower Extensible Operating System
Cisco Nx-os
NA
CVE-2013-2339
HP Smart Zero Core 4.3 and 4.3.1 on the t410 All-in-One Smart Zero Client, t410 Smart Zero Client, t510 Flexible Thin Client, t5565z Smart Client, t610 Flexible Thin Client, and t610 PLUS Flexible Thin Client allows local users to obtain sensitive information, modify data, or cau...
Hp Smart Zero Core 4.3
Hp Smart Zero Core 4.3.1
NA
CVE-2020-6913
A potential security vulnerability in the HP Sure Sense driver may allow Unauthorized Code Execution.
9.1
CVSSv3
CVE-2017-12249
A vulnerability in the Traversal Using Relay NAT (TURN) server included with Cisco Meeting Server (CMS) could allow an authenticated, remote malicious user to gain unauthenticated or unauthorized access to components of or sensitive information in an affected system. The vulnerab...
Cisco Meeting Server 2.2.4
Cisco Meeting Server 2.1.2
Cisco Meeting Server 2.2.0
Cisco Meeting Server 2.2.2
Cisco Meeting Server 2.1.6
Cisco Meeting Server 2.1.8
Cisco Meeting Server 2.1.3
Cisco Meeting Server 2.1.4
Cisco Meeting Server 2.2.5
Cisco Meeting Server 2.1.9
Cisco Meeting Server 2.1.10
Cisco Meeting Server 2.1.1
Cisco Meeting Server 2.1.0
Cisco Meeting Server
Cisco Meeting Server 2.2.1
Cisco Meeting Server 2.2.3
Cisco Meeting Server 2.1.5
Cisco Meeting Server 2.1.7
6
CVSSv3
CVE-2020-3503
A vulnerability in the file system permissions of Cisco IOS XE Software could allow an authenticated, local malicious user to obtain read and write access to critical configuration or system files. The vulnerability is due to insufficient file system permissions on an affected de...
Cisco Ios Xe 16.12.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »