Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
zeroscience.mk vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2020-12133
The Apros Evolution, ConsciusMap, and Furukawa provisioning systems up to and including 2.8.1 allow remote code execution because of javax.faces.ViewState Java deserialization.
Farukawa Electric Consciousmap
NA
CVE-2015-528521
Kallithea suffers from a HTTP header injection (response splitting) vulnerability because it fails to properly sanitize user input before using it as an HTTP header value via the GET 'came_from' parameter in the login instance. This type of attack not only allows a mali...
5.3
CVSSv3
CVE-2019-13927
A vulnerability has been identified in Desigo PX automation controllers PXC00-E.D, PXC50-E.D, PXC100-E.D, PXC200-E.D with Desigo PX Web modules PXA40-W0, PXA40-W1, PXA40-W2 (All firmware versions < V6.00.320), Desigo PX automation controllers PXC00-U, PXC64-U, PXC128-U with De...
Siemens Pxc00-e.d Firmware
Siemens Pxc50-e.d Firmware
Siemens Pxc100-e.d Firmware
Siemens Pxc200-e.d Firmware
Siemens Pxa40-w0 Firmware
Siemens Pxa40-w1 Firmware
Siemens Pxa40-w2 Firmware
Siemens Pxc00-u Firmware
Siemens Pxc64-u Firmware
Siemens Pxc128-u Firmware
Siemens Pxa30-w0 Firmware
Siemens Pxa30-w1 Firmware
Siemens Pxa30-w2 Firmware
Siemens Pxc22.1-e.d Firmware
Siemens Pxc36-e.d Firmware
Siemens Pxc36.1-e.d Firmware
NA
CVE-2015-2269
Multiple cross-site scripting (XSS) vulnerabilities in lib/javascript-static.js in Moodle up to and including 2.5.9, 2.6.x prior to 2.6.9, 2.7.x prior to 2.7.6, and 2.8.x prior to 2.8.4 allow remote authenticated users to inject arbitrary web script or HTML via a (1) alt or (2) t...
Moodle Moodle 2.5.6
Moodle Moodle 2.5.5
Moodle Moodle 2.5.4
Moodle Moodle 2.5.3
Moodle Moodle 2.7.1
Moodle Moodle 2.7.2
Moodle Moodle 2.7.3
Moodle Moodle 2.7.4
Moodle Moodle 2.6.1
Moodle Moodle 2.6.2
Moodle Moodle 2.6.3
Moodle Moodle 2.6.4
Moodle Moodle 2.8.3
Moodle Moodle 2.5.8
Moodle Moodle 2.5.1
Moodle Moodle 2.6.0
Moodle Moodle 2.6.5
Moodle Moodle 2.6.7
Moodle Moodle 2.7.0
Moodle Moodle 2.7.5
Moodle Moodle 2.8.1
Moodle Moodle
1 EDB exploit
NA
CVE-2014-9415
Huawei eSpace Desktop before V100R001C03 allows local users to cause a denial of service (program exit) via a crafted QES file.
Huawei Espace Desktop
1 EDB exploit
NA
CVE-2014-9418
The eSpace Meeting ActiveX control (eSpaceStatusCtrl.dll) in Huawei eSpace Desktop before V200R001C03 allows local users to cause a denial of service (memory overflow) via unspecified vectors.
Huawei Espace Desktop
1 EDB exploit
1 Github repository
NA
CVE-2010-2204
Unspecified vulnerability in Adobe Reader and Acrobat 9.x prior to 9.3.3, and 8.x prior to 8.2.3 on Windows and Mac OS X, allows malicious users to cause a denial of service or possibly execute arbitrary code via unknown vectors.
Adobe Acrobat 9.1.1
Adobe Acrobat 9.1.2
Adobe Acrobat 9.0
Adobe Acrobat 9.1
Adobe Acrobat 9.1.3
Adobe Acrobat 9.2
Adobe Acrobat 9.3
Adobe Acrobat 9.3.1
Adobe Acrobat 9.3.2
Adobe Acrobat Reader 9.2
Adobe Acrobat Reader 9.3
Adobe Acrobat Reader 9.1.2
Adobe Acrobat Reader 9.1.3
Adobe Acrobat Reader 9.0
Adobe Acrobat Reader 9.3.1
Adobe Acrobat Reader 9.3.2
Adobe Acrobat Reader 9.1
Adobe Acrobat Reader 9.1.1
Adobe Acrobat 8.0
Adobe Acrobat 8.1.7
Adobe Acrobat 8.2.1
Adobe Acrobat 8.1.5
1 EDB exploit
NA
CVE-2011-0614
Buffer overflow in Adobe Audition 3.0.1 and previous versions allows remote malicious users to cause a denial of service (memory corruption and application crash) or possibly execute arbitrary code via a crafted Audition Session (aka .ses) file.
Adobe Audition 3.0
Adobe Audition
1 EDB exploit
7
CVSSv3
CVE-2017-9644
An Unquoted Search Path or Element issue exists in Automated Logic Corporation (ALC) ALC WebCTRL, i-Vu, SiteScan Web 6.5 and prior; ALC WebCTRL, SiteScan Web 6.1 and prior; ALC WebCTRL, i-Vu 6.0 and prior; ALC WebCTRL, i-Vu, SiteScan Web 5.5 and prior; and ALC WebCTRL, i-Vu, Site...
Automatedlogic Sitescan Web
Carrier Automatedlogic Webctrl
Automatedlogic I-vu
1 EDB exploit
NA
CVE-2015-5285
CRLF injection vulnerability in Kallithea prior to 0.3 allows remote malicious users to inject arbitrary HTTP headers and conduct HTTP response splitting attacks via the came_from parameter to _admin/login.
Kallithea-scm Kallithea
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »