Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
background management system vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2022-43030
Siyucms v6.1.7 exists to contain a remote code execution (RCE) vulnerability in the background. SIYUCMS is a content management system based on ThinkPaP5 AdminLTE. SIYUCMS has a background command execution vulnerability, which can be used by malicious users to gain server privil...
Siyucms Siyucms 6.1.7
1 Github repository
9.8
CVSSv3
CVE-2020-35442
FDCMS (also known as Fangfa Content Management System) 4.0 allows remote malicious users to get a webshell in the background via Front/lib/Action/FindexAction.class.php.
Fangfa Fdcms 4.0
9.1
CVSSv3
CVE-2023-46886
Dreamer CMS before version 4.0.1 is vulnerable to Directory Traversal. Background template management allows arbitrary modification of the template file, allowing system sensitive files to be read.
Dreamer Cms Project Dreamer Cms
NA
CVE-2011-3192
The byterange filter in the Apache HTTP Server 1.3.x, 2.0.x up to and including 2.0.64, and 2.2.x up to and including 2.2.19 allows remote malicious users to cause a denial of service (memory and CPU consumption) via a Range header that expresses multiple overlapping ranges, as e...
Apache Http Server
Suse Linux Enterprise Server 11
Opensuse Opensuse 11.4
Opensuse Opensuse 11.3
Suse Linux Enterprise Software Development Kit 10
Suse Linux Enterprise Server 10
Suse Linux Enterprise Software Development Kit 11
Canonical Ubuntu Linux 10.10
Canonical Ubuntu Linux 11.04
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 10.04
2 EDB exploits
1 Nmap script
18 Github repositories
3 Articles
5.4
CVSSv3
CVE-2022-39301
sra-admin is a background rights management system that separates the front and back end. sra-admin version 1.1.1 has a storage cross-site scripting (XSS) vulnerability. After logging into the sra-admin background, an attacker can upload an html page containing xss attack code in...
Sra-admin Project Sra-admin
NA
CVE-2002-0012
Vulnerabilities in a large number of SNMP implementations allow remote malicious users to cause a denial of service or gain privileges via SNMPv1 trap handling, as demonstrated by the PROTOS c06-SNMPv1 test suite. NOTE: It is highly likely that this candidate will be SPLIT into m...
Snmp Snmp
NA
CVE-2002-0013
Vulnerabilities in the SNMPv1 request handling of a large number of SNMP implementations allow remote malicious users to cause a denial of service or gain privileges via (1) GetRequest, (2) GetNextRequest, and (3) SetRequest messages, as demonstrated by the PROTOS c06-SNMPv1 test...
Snmp Snmp
1 EDB exploit
NA
CVE-2013-1181
Cisco NX-OS on Nexus 5500 devices 4.x and 5.x prior to 5.0(3)N2(2), Nexus 3000 devices 5.x prior to 5.0(3)U3(2), and Unified Computing System (UCS) 6200 devices prior to 2.0(1w) allows remote malicious users to cause a denial of service (device reload) by sending a jumbo packet t...
Cisco Nx-os 4.2\\(1\\)sv1\\(4a\\)
Cisco Nx-os 4.2\\(1\\)sv1\\(4\\)
Cisco Nx-os 4.0\\(4\\)sv1\\(1\\)
Cisco Nx-os 4.2\\(1\\)n2\\(1a\\)
Cisco Nx-os 4.2
Cisco Nx-os 4.1\\(3\\)n2\\(1a\\)
Cisco Nx-os 4.1\\(3\\)n2\\(1\\)
Cisco Nx-os 4.1.\\(5\\)
Cisco Nx-os 4.1.\\(4\\)
Cisco Nx-os 4.1.\\(3\\)
Cisco Nx-os 4.1.\\(2\\)
Cisco Nx-os 4.2\\(8\\)
Cisco Nx-os 4.0\\(4\\)sv1\\(2\\)
Cisco Nx-os 4.0\\(4\\)sv1\\(3a\\)
Cisco Nx-os 4.0\\(4\\)sv1\\(3b\\)
Cisco Nx-os 4.0\\(4\\)sv1\\(3c\\)
Cisco Nx-os 4.0
Cisco Nx-os 4.0\\(1a\\)n2\\(1a\\)
Cisco Nx-os 4.0\\(1a\\)n1\\(1\\)
Cisco Nx-os 4.0\\(0\\)n1\\(2a\\)
Cisco Nx-os 4.2\\(1\\)
Cisco Nx-os 4.2\\(2\\)
7.8
CVSSv3
CVE-2019-16253
The Text-to-speech Engine (aka SamsungTTS) application prior to 3.0.02.7 and 3.0.00.101 for Android allows a local malicious user to escalate privileges, e.g., to system privileges. The Samsung case ID is 101755.
Samsung Text-to-speech
8 Github repositories
10
CVSSv3
CVE-2024-3094
Malicious code exists in the upstream tarballs of xz, starting with version 5.6.0. Through a series of complex obfuscations, the liblzma build process extracts a prebuilt object file from a disguised test file existing in the source code, which is then used to modify specific fun...
Tukaani Xz 5.6.1
Tukaani Xz 5.6.0
71 Github repositories
4 Articles
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-3675
CVE-2024-3400
CVE-2024-23557
mass assignment
CVE-2023-1389
local file inclusion
CVE-2024-32596
file upload
CVE-2024-32593
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2