Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
controller vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2019-4411
IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, and 10.4.1 could allow an authenticated user to obtain sensitive information due to easy to guess session identifier names. IBM X-Force ID: 162658.
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.4.1
5.3
CVSSv3
CVE-2019-4412
IBM Cognos Controller stores sensitive information in URL parameters. This may lead to information disclosure if unauthorized parties have access to the URLs via server logs, referrer header or browser history. IBM X-Force ID: 162659.
Ibm Cognos Controller 10.3.0
Ibm Cognos Controller 10.3.1
Ibm Cognos Controller 10.4.0
Ibm Cognos Controller 10.4.1
7.5
CVSSv3
CVE-2020-7473
In certain situations, all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020, allow unauthenticated malicious users to access the documents and folders of ShareFile users. NOTE: unlike most CVEs, exp...
Citrix Sharefile Storagezones Controller
Citrix Sharefile Storagezones Controller 5.6.0
Citrix Sharefile Storagezones Controller 5.7.0
Citrix Sharefile Storagezones Controller 5.8.0
Citrix Sharefile Storagezones Controller 5.9.0
1 Github repository
7.5
CVSSv3
CVE-2020-8982
An unauthenticated arbitrary file read issue exists in all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020. RCE and file access is granted to everything hosted by ShareFile, be it on-premise or ins...
Citrix Sharefile Storagezones Controller
Citrix Sharefile Storagezones Controller 5.6.0
Citrix Sharefile Storagezones Controller 5.7.0
Citrix Sharefile Storagezones Controller 5.8.0
Citrix Sharefile Storagezones Controller 5.9.0
1 Github repository
7.5
CVSSv3
CVE-2020-8983
An arbitrary file write issue exists in all versions of Citrix ShareFile StorageZones (aka storage zones) Controller, including the most recent 5.10.x releases as of May 2020, which allows remote code execution. RCE and file access is granted to everything hosted by ShareFile, be...
Citrix Sharefile Storagezones Controller
Citrix Sharefile Storagezones Controller 5.6.0
Citrix Sharefile Storagezones Controller 5.7.0
Citrix Sharefile Storagezones Controller 5.8.0
Citrix Sharefile Storagezones Controller 5.9.0
1 Github repository
NA
CVE-2013-1235
Cisco Wireless LAN Controller (WLC) devices do not properly address the resource consumption of terminated TELNET sessions, which allows remote malicious users to cause a denial of service (TELNET outage) by making many TELNET connections and improperly ending these connections, ...
Cisco 4100 Wireless Lan Controller
Cisco 4400 Wireless Lan Controller
Cisco 4402 Wireless Lan Controller
Cisco 4404 Wireless Lan Controller
Cisco 5500 Wireless Lan Controller -
Cisco 2000 Wireless Lan Controller
Cisco 2100 Wireless Lan Controller
Cisco 2106 Wireless Lan Controller -
Cisco 2112 Wireless Lan Controller -
Cisco 2500 Wireless Lan Controller -
Cisco 7500 Wireless Lan Controller -
Cisco Airespace 4000 Wireless Lan Controller
Cisco 2125 Wireless Lan Controller -
Cisco 2504 Wireless Lan Controller -
Cisco 8500 Wireless Lan Controller -
Cisco Wireless Lan Controller
NA
CVE-2015-0726
The web administration interface on Cisco Wireless LAN Controller (WLC) devices prior to 7.0.241, 7.1.x up to and including 7.4.x prior to 7.4.122, and 7.5.x and 7.6.x prior to 7.6.120 allows remote authenticated users to cause a denial of service (device crash) via unspecified p...
Cisco Wireless Lan Controller Software 7.0 Base
Cisco Wireless Lan Controller Software 7.4.100.60
Cisco Wireless Lan Controller Software 7.4.100
Cisco Wireless Lan Controller Software 7.4.1.54
Cisco Wireless Lan Controller Software 7.4 Base
Cisco Wireless Lan Controller Software 7.4.110.0
Cisco Wireless Lan Controller Software 7.0.220.0
Cisco Wireless Lan Controller Software 7.0.98.218
Cisco Wireless Lan Controller Software 7.6.100.0
Cisco Wireless Lan Controller Software 7.4.121.0
Cisco Wireless Lan Controller Software 7.0.116.0
Cisco Wireless Lan Controller Software 7.0.98.0
NA
CVE-2005-1784
Hosting Controller 6.1 HotFix 2.0 and previous versions allows remote malicious users to steal passwords and gain privileges via a modified emailaddress parameter in an updateprofile action for UserProfile.asp.
Hosting Controller Hosting Controller
1 EDB exploit
NA
CVE-2007-6499
Unspecified vulnerability in Hosting Controller 6.1 Hot fix 3.3 and previous versions allows remote authenticated users to uninstall the FrontPage extensions of an arbitrary account via a request to fp2002/UNINSTAL.asp with a "host id (IIS) value."
Hosting Controller Hosting Controller
1 EDB exploit
NA
CVE-2007-6497
Hosting Controller 6.1 Hot fix 3.3 and previous versions (1) allows remote malicious users to change arbitrary user profiles via a request to Hosting/Addreseller.asp with modified loginname and email parameters; and (2) allows remote authenticated users to change a credit amount ...
Hosting Controller Hosting Controller
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
NEXT »