Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
yavuz atlas vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2018-10466
Zoho ManageEngine ADAudit Plus prior to 5.0.0 build 5100 allows blind SQL Injection.
Zohocorp Manageengine Adaudit Plus
383
VMScore
CVE-2018-11027
A reflected XSS vulnerability on Ruckus ICX7450-48 devices allows remote malicious users to inject arbitrary web script or HTML.
Ruckussecurity Icx7450-48 Firmware -
570
VMScore
CVE-2018-18061
An issue exists in dialog.php in tecrail Responsive FileManager 9.8.1. Attackers can access the file manager interface that provides them with the ability to upload and delete files.
Tecrail Responsive Filemanager 9.8.1
384
VMScore
CVE-2018-11689
Web Viewer for Hanwha DVR 2.17 and Smart Viewer in Samsung Web Viewer for Samsung DVR are vulnerable to XSS via the /cgi-bin/webviewer_login_page data3 parameter. (The same Web Viewer codebase was transitioned from Samsung to Hanwha.)
Samsung Smartviewer -
Hanwha-security Hrd-1642 Firmware
Hanwha-security Hrd-842 Firmware
Hanwha-security Hrd-442 Firmware
Hanwha-security Hrd-1641 Firmware
Hanwha-security Hrd-841 Firmware
Hanwha-security Hrd-840 Firmware
Hanwha-security Hrd-440 Firmware
Hanwha-security Hrd-443 Firmware
Hanwha-security Srd-1694u Firmware
383
VMScore
CVE-2018-11690
The Balbooa Gridbox extension version 2.4.0 and previous versions for Joomla! is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability via a crafted URL to execute script in a victim's Web...
Balbooa Gridbox
383
VMScore
CVE-2018-18062
An issue exists in dialog.php in tecrail Responsive FileManager 9.8.1. A reflected XSS vulnerability allows remote malicious users to inject arbitrary web script or HTML.
Tecrail Responsive Filemanager 9.8.1
383
VMScore
CVE-2018-11688
Ignite Realtime Openfire prior to 3.9.2 is vulnerable to cross-site scripting, caused by improper validation of user-supplied input. A remote attacker could exploit this vulnerability via a crafted URL to execute script in a victim's Web browser within the security context o...
Igniterealtime Openfire 3.7.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started