Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
unauthorized vulnerabilities and exploits
(subscribe to this query)
5.5
CVSSv3
CVE-2021-1128
A vulnerability in the CLI parser of Cisco IOS XR Software could allow an authenticated, local malicious user to view more information than their privileges allow. The vulnerability is due to insufficient application of restrictions during the execution of a specific command. An ...
Cisco Ios Xr
Cisco Ios Xr 7.2.0
Cisco Ios Xr 7.3.0
NA
CVE-2003-1162
index.php in Tritanium Bulletin Board 1.2.3 allows remote malicious users to read and reply to arbitrary messages by modifying the thread_id, forum_id, and sid parameters.
Tritanium Scripts Tritanium Bulletin Board 1.2.1
Tritanium Scripts Tritanium Bulletin Board 1.2.2
Tritanium Scripts Tritanium Bulletin Board 1.1 Final
Tritanium Scripts Tritanium Bulletin Board 1.2
Tritanium Scripts Tritanium Bulletin Board 0.999 Beta
Tritanium Scripts Tritanium Bulletin Board 1.0 Beta
Tritanium Scripts Tritanium Bulletin Board 0.993 Beta
Tritanium Scripts Tritanium Bulletin Board 0.994 Beta
Tritanium Scripts Tritanium Bulletin Board 1.2.3
1 EDB exploit
NA
CVE-2004-2636
TinyWeb 1.9 allows remote malicious users to read source code of scripts via "/./" in the URL.
1 EDB exploit
5.3
CVSSv3
CVE-2017-6629
A vulnerability in the ImageID parameter of Cisco Unity Connection 10.5(2) could allow an unauthenticated, remote malicious user to access files in arbitrary locations on the filesystem of an affected device. The issue is due to improper sanitization of user-supplied input in HTT...
Cisco Unity Connection 10.5\\(2\\)
5.5
CVSSv3
CVE-2017-6693
A vulnerability in the ConfD server component of Cisco Elastic Services Controllers could allow an authenticated, local malicious user to access information stored in the file system of an affected system, aka Unauthorized Directory Access. More Information: CSCvd76286. Known Aff...
Cisco Elastic Services Controller 2.2\\(9.76\\)
Cisco Elastic Services Controller 2.3\\(1\\)
NA
CVE-2015-0768
The Device Work Center (DWC) component in Cisco Prime Network Control System (NCS) 2.1(0.0.85), 2.2(0.0.58), and 2.2(0.0.69) does not properly implement AAA roles, which allows remote authenticated users to bypass intended access restrictions and execute commands via a login sess...
Cisco Prime Network Control System 2.1\\(0.0.85\\)
Cisco Prime Network Control System 2.2\\(0.0.58\\)
Cisco Prime Network Control System 2.2\\(0.0.69\\)
NA
CVE-2014-8036
The outlookpa component in Cisco WebEx Meetings Server does not properly validate API input, which allows remote malicious users to modify a meeting's invite list via a crafted URL, aka Bug ID CSCuj40254.
Cisco Webex Meetings Server -
NA
CVE-2004-0671
Brightmail Spamfilter 6.0 and previous versions beta releases allows remote malicious users to read mail from other users by modifying the id parameter in a viewMsgDetails.do request.
Symantec Brightmail Antispam 6.0
1 EDB exploit
9.8
CVSSv3
CVE-2018-0318
A vulnerability in the password reset function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote malicious user to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of a password reset request....
Cisco Prime Collaboration
Cisco Prime Collaboration Provisioning
9.8
CVSSv3
CVE-2018-0319
A vulnerability in the password recovery function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote malicious user to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of a password recovery re...
Cisco Prime Collaboration Provisioning
Cisco Prime Collaboration
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
deserialization
CVE-2024-4040
cross-site scripting
CVE-2023-25790
CVE-2024-2961
XML external entity
CVE-2024-26926
CVE-2024-32806
CVE-2024-32711
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »