Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webgui webgui vulnerabilities and exploits
(subscribe to this query)
890
VMScore
CVE-2014-5334
FreeNAS prior to 9.3-M3 has a blank admin password, which allows remote malicious users to gain root privileges by leveraging a WebGui login.
Freenas Freenas 9.3
Freenas Freenas
890
VMScore
CVE-2008-2077
Unspecified vulnerability in Plain Black WebGUI 7.4.34 has unknown impact and attack vectors related to "data form list view."
Plain Black Webgui 7.4.34
828
VMScore
CVE-2008-4798
The loadModule function in lib/WebGUI/Asset.pm in WebGUI prior to 7.5.30 (stable) allows remote malicious users to execute arbitrary code by uploading a Perl module and accessing it via a crafted URL.
Webgui Webgui 7.4.13
Webgui Webgui 7.4.14
Webgui Webgui 7.4.7
Webgui Webgui 7.4.8
Webgui Webgui 7.4.20
Webgui Webgui 7.4.21
Webgui Webgui 7.1.3
Webgui Webgui 7.0
Webgui Webgui 7.0.7
Webgui Webgui 7.0.8
Webgui Webgui 7.3.2
Webgui Webgui 7.3.3
Webgui Webgui 7.3.10
Webgui Webgui 7.3.11
Webgui Webgui 7.3.18
Webgui Webgui 7.3.19
Webgui Webgui 7.3.20
Webgui Webgui
Webgui Webgui 7.4.2
Webgui Webgui 7.4.5
Webgui Webgui 7.4.23
Webgui Webgui 7.4.17
801
VMScore
CVE-2021-38557
raspap-webgui in RaspAP 2.6.6 allows malicious users to execute commands as root because of the insecure sudoers permissions. The www-data account can execute /etc/raspap/hostapd/enablelog.sh as root with no password; however, the www-data account can also overwrite /etc/raspap/h...
Raspap Raspap 2.6.6
801
VMScore
CVE-2018-16055
An authenticated command injection vulnerability exists in status_interfaces.php via dhcp_relinquish_lease() in pfSense prior to 2.4.4 due to its passing user input from the $_POST parameters "ifdescr" and "ipv" to a shell without escaping the contents of the ...
Netgate Pfsense
755
VMScore
CVE-2008-6402
PHP remote file inclusion vulnerability in hu/modules/reg-new/modstart.php in Sofi WebGui 0.6.3 PRE and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the mod_dir parameter.
Muskatli Sofi Webgui 0.4.2
Muskatli Sofi Webgui
Muskatli Sofi Webgui 0.6.0pre
Muskatli Sofi Webgui 0.5.2
1 EDB exploit
755
VMScore
CVE-2005-4694
Unspecified vulnerability in the www_add method in Asset.pm in Plain Black WebGUI 6.3.0 and other versions prior to 6.7.6 allows malicious users to execute arbitrary code via unknown attack vectors.
1 EDB exploit
685
VMScore
CVE-2015-2295
Cross-site request forgery (CSRF) vulnerability in system_firmware_restorefullbackup.php in the WebGUI in pfSense prior to 2.2.1 allows remote malicious users to hijack the authentication of administrators for requests that delete arbitrary files via the deletefile parameter.
Netgate Pfsense
1 EDB exploit
668
VMScore
CVE-2012-3000
Multiple SQL injection vulnerabilities in sam/admin/reports/php/saveSettings.php in the (1) APM WebGUI in F5 BIG-IP LTM, GTM, ASM, Link Controller, PSM, APM, Edge Gateway, and Analytics and (2) AVR WebGUI in WebAccelerator and WOM 11.2.x prior to 11.2.0-HF3 and 11.2.x prior to 11...
F5 Big-ip Webaccelerator 11.2.0
F5 Big-ip Webaccelerator 11.2.1
F5 Big-ip Webaccelerator 11.0.0
F5 Big-ip Webaccelerator 11.1.0
F5 Big-ip Global Traffic Manager 11.1.0
F5 Big-ip Global Traffic Manager 11.0.0
F5 Big-ip Global Traffic Manager 11.2.1
F5 Big-ip Global Traffic Manager 11.2.0
F5 Big-ip Local Traffic Manager 11.1.0
F5 Big-ip Local Traffic Manager 11.0.0
F5 Big-ip Local Traffic Manager 11.2.0
F5 Big-ip Local Traffic Manager 11.2.1
F5 Big-ip Protocol Security Module 11.0.0
F5 Big-ip Protocol Security Module 11.1.0
F5 Big-ip Protocol Security Module 11.2.0
F5 Big-ip Protocol Security Module 11.2.1
F5 Big-ip Wan Optimization Manager 11.0.0
F5 Big-ip Wan Optimization Manager 11.2.0
F5 Big-ip Wan Optimization Manager 11.2.1
F5 Big-ip Wan Optimization Manager 11.1.0
F5 Big-ip Link Controller 11.2.1
F5 Big-ip Link Controller 11.1.0
668
VMScore
CVE-2005-2837
Multiple eval injection vulnerabilities in PlainBlack Software WebGUI prior to 6.7.3 allow remote malicious users to execute arbitrary Perl code via (1) Help.pm, (2) International.pm, or (3) WebGUI.pm.
Plainblack Webgui
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33572
CVE-2024-24919
CVE-2024-0230
CVE-2024-32714
HTML injection
local file inclusion
CVE-2024-31098
CVE-2024-31244
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »