Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
web port vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2019-9725
The Web manager (aka Commander) on Korenix JetPort 5601 and 5601f devices has Persistent XSS via the Port Alias field under Serial Setting.
Korenix Jetport Web Manager -
Korenix Jetport 5601 Firmware -
Korenix Jetport 5601f Firmware -
5.9
CVSSv3
CVE-2018-16603
An issue exists in Amazon Web Services (AWS) FreeRTOS up to and including 1.3.1, FreeRTOS up to V10.0.1 (with FreeRTOS+TCP), and WITTENSTEIN WHIS Connect middleware TCP/IP component. Out of bounds access to TCP source and destination port fields in xProcessReceivedTCPPacket can l...
Amazon Amazon Web Services Freertos
Amazon Freertos
NA
CVE-2010-0272
Heap-based buffer overflow in Sun Java System Web Server 7.0 Update 6 on Linux allows remote malicious users to discover process memory locations via crafted data to TCP port 80, as demonstrated by the vd_sjws2 module in VulnDisco. NOTE: as of 20100106, this disclosure has no act...
Sun Java System Web Server 7.0
NA
CVE-2010-0273
Unspecified vulnerability in Sun Java System Web Server 7.0 Update 6 on Linux allows remote malicious users to execute arbitrary code by sending a process memory address and crafted data to TCP port 80, as demonstrated by the vd_sjws2 module in VulnDisco. NOTE: as of 20100106, th...
Sun Java System Web Server 7.0
NA
CVE-2011-0488
Stack-based buffer overflow in NTWebServer.exe in the test web service in InduSoft NTWebServer, as distributed in Advantech Studio 6.1 and InduSoft Web Studio 7.0, allows remote malicious users to cause a denial of service (daemon crash) or possibly execute arbitrary code via a l...
Advantech Advantech Studio 6.1
Indusoft Web Studio 7.0
NA
CVE-2010-0361
Stack-based buffer overflow in the WebDAV implementation in webservd in Sun Java System Web Server (aka SJWS) 7.0 Update 7 allows remote malicious users to cause a denial of service (daemon crash) and possibly have unspecified other impact via a long URI in an HTTP OPTIONS reques...
Sun Java System Web Server 7.0
3 EDB exploits
NA
CVE-2003-1159
Plug and Play Web Server Proxy 1.0002c allows remote malicious users to cause a denial of service (server crash) via an invalid URI in an HTTP GET request to TCP port 8080.
Plug And Play Plug And Play Web Server Proxy 1.0002c
NA
CVE-2009-1227
NOTE: this issue has been disputed by the vendor. Buffer overflow in the PKI Web Service in Check Point Firewall-1 PKI Web Service allows remote malicious users to cause a denial of service (crash) and possibly execute arbitrary code via a long (1) Authorization or (2) Referer HT...
Checkpoint Firewall-1 Pki Web Service -
1 EDB exploit
NA
CVE-2014-3313
Cross-site scripting (XSS) vulnerability in the web user interface on Cisco Small Business SPA300 and SPA500 phones allows remote malicious users to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCuo52582.
Cisco Spa941 4-line Ip Phone With 1-port Ethernet
Cisco Spa922 1-line Ip Phone With 1-port Ethernet
Cisco Spa 508g 8-line Ip Phone
Cisco Spa 504g 4-line Ip Phone
Cisco Spa901 1-line Ip Phone
Cisco Spa 525g2 5-line Ip Phone
Cisco Spa 502g 1-line Ip Phone
Cisco Spa 501g 8-line Ip Phone
Cisco Spa 525g 5-line Ip Phone
Cisco Spa 514g 4-line Ip Phone
Cisco Spa 303 3 Line Ip Phone
Cisco Spa 301 1 Line Ip Phone
Cisco Spa962 6-line Ip Phone With 2-port Switch
Cisco Spa942 4-line Ip Phone With 2-port Switch
Cisco Spa 512g 1-line Ip Phone
Cisco Spa 509g 12-line Ip Phone
1 Article
5.9
CVSSv3
CVE-2022-46768
Arbitrary file read vulnerability exists in Zabbix Web Service Report Generation, which listens on the port 10053. The service does not have proper validation for URL parameters before reading the files.
Zabbix Zabbix-agent2
Zabbix Web Service Report Generation
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
man-in-the-middle
CVE-2024-34558
CVE-2024-32674
CVE-2024-34351
XPath injection
CVE-2023-45866
CVE-2024-25528
CVE-2024-25517
path traversal
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »