Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web links module vulnerabilities and exploits
(subscribe to this query)
383
VMScore
CVE-2017-18121
The consentAdmin module in SimpleSAMLphp up to and including 1.14.15 is vulnerable to a Cross-Site Scripting attack, allowing an malicious user to craft links that could execute arbitrary JavaScript code on the victim's web browser.
Simplesamlphp Simplesamlphp
Debian Debian Linux 7.0
Debian Debian Linux 9.0
Debian Debian Linux 8.0
694
VMScore
CVE-2013-5477
The T1/E1 driver-queue functionality in Cisco IOS 12.2 and 15.0 up to and including 15.3, when an HDLC32 driver is used, allows remote malicious users to cause a denial of service (interface queue wedge) via bursty network traffic, aka Bug ID CSCub67465.
Cisco Ios 15.3
Cisco Ios 15.2
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 12.2
383
VMScore
CVE-2009-2374
Drupal 5.x prior to 5.19 and 6.x prior to 6.13 does not properly sanitize failed login attempts for pages that contain a sortable table, which includes the username and password in links that can be read from (1) the HTTP referer header of external web sites that are visited from...
Drupal Drupal
632
VMScore
CVE-2014-3361
The ALG module in Cisco IOS 15.0 up to and including 15.4 does not properly implement SIP over NAT, which allows remote malicious users to cause a denial of service (device reload) via multipart SDP IPv4 traffic, aka Bug ID CSCun54071.
Cisco Ios 15.2
Cisco Ios 15.3
Cisco Ios 15.0
Cisco Ios 15.1
Cisco Ios 15.4
694
VMScore
CVE-2015-0646
Memory leak in the TCP input module in Cisco IOS 12.2, 12.4, 15.0, 15.2, 15.3, and 15.4 and IOS XE 3.3.xXO, 3.5.xE, 3.6.xE, 3.8.xS up to and including 3.10.xS prior to 3.10.5S, and 3.11.xS and 3.12.xS prior to 3.12.3S allows remote malicious users to cause a denial of service (me...
Cisco Ios Xe 3.3xo.0
Cisco Ios Xe 3.5e.0
Cisco Ios Xe 3.10s.0
Cisco Ios Xe 3.10s.3
Cisco Ios Xe 3.10s.4
Cisco Ios Xe 3.5e.1
Cisco Ios Xe 3.5e.2
Cisco Ios Xe 3.8s.1
Cisco Ios Xe 3.8s.2
Cisco Ios Xe 3.10s.0a
Cisco Ios Xe 3.11s.1
Cisco Ios Xe 3.11s.3
Cisco Ios Xe 3.12s.1
Cisco Ios Xe 3.6e.1
Cisco Ios Xe 3.11s.4
Cisco Ios Xe 3.8s Base
Cisco Ios Xe 3.8s.0
Cisco Ios Xe 3.10s.1
Cisco Ios Xe 3.10s.2
Cisco Ios Xe 3.9s.2
Cisco Ios Xe 3.11s.0
Cisco Ios Xe 3.5e.3
694
VMScore
CVE-2014-2109
The TCP Input module in Cisco IOS 12.2 up to and including 12.4 and 15.0 up to and including 15.4, when NAT is used, allows remote malicious users to cause a denial of service (memory consumption or device reload) via crafted TCP packets, aka Bug IDs CSCuh33843 and CSCuj41494.
Cisco Ios 15.4
Cisco Ios 15.3
Cisco Ios 12.2
Cisco Ios 15.2
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 12.4
Cisco Ios 12.3
632
VMScore
CVE-2014-2111
The Application Layer Gateway (ALG) module in Cisco IOS 12.2 up to and including 12.4 and 15.0 up to and including 15.4, when NAT is used, allows remote malicious users to cause a denial of service (device reload) via crafted DNS packets, aka Bug ID CSCue00996.
Cisco Ios 15.4
Cisco Ios 15.3
Cisco Ios 12.3
Cisco Ios 12.2
Cisco Ios 15.2
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 12.4
581
VMScore
CVE-2022-30333
RARLAB UnRAR prior to 6.12 on Linux and UNIX allows directory traversal to write to files during an extract (aka unpack) operation, as demonstrated by creating a ~/.ssh/authorized_keys file. NOTE: WinRAR and Android RAR are unaffected.
Rarlab Unrar
2 Metasploit modules
4 Github repositories
1 Article
230
VMScore
CVE-2015-1197
cpio 2.11, when using the --no-absolute-filenames option, allows local users to write to arbitrary files via a symlink attack on a file in an archive.
Gnu Cpio 2.11
1 Metasploit module
1 Article
694
VMScore
CVE-2014-2108
Cisco IOS 12.2 and 15.0 up to and including 15.3 and IOS XE 3.2 up to and including 3.7 prior to 3.7.5S and 3.8 up to and including 3.10 prior to 3.10.1S allow remote malicious users to cause a denial of service (device reload) via a malformed IKEv2 packet, aka Bug ID CSCui88426.
Cisco Ios 12.2
Cisco Ios 15.3
Cisco Ios 15.2
Cisco Ios 15.1
Cisco Ios 15.0
Cisco Ios 15.0\\(1\\)se
Cisco Ios Xe 3.9.0s
Cisco Ios Xe 3.9.1s
Cisco Ios Xe 3.8.0s
Cisco Ios Xe 3.8s\\(.0\\)
Cisco Ios Xe 3.8s\\(.1\\)
Cisco Ios Xe 3.5.0s
Cisco Ios Xe 3.5.1s
Cisco Ios Xe 3.5.2s
Cisco Ios Xe 3.5.xs
Cisco Ios Xe 3.4s\\(.2\\)
Cisco Ios Xe 3.4s\\(.3\\)
Cisco Ios Xe 3.4s\\(.4\\)
Cisco Ios Xe 3.4s\\(.5\\)
Cisco Ios Xe 3.2.4sg
Cisco Ios Xe 3.2.3sg
Cisco Ios Xe 3.2.2sg
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »