Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
i vulnerabilities and exploits
(subscribe to this query)
9.1
CVSSv3
CVE-2018-1000141
I, Librarian version 4.9 and previous versions contains an Incorrect Access Control vulnerability in ajaxdiscussion.php that can result in any users gaining unauthorized access (read, write and delete) to project discussions.
I-librarian I Librarian
NA
CVE-2015-2132
Unspecified vulnerability in the execve system-call implementation in HP HP-UX B.11.11, B.11.23, and B.11.31 allows local users to gain privileges via unknown vectors.
Hp Operations Manager I 10.01
Hp Operations Manager I 9.23
Hp Operations Manager I 9.24
Hp Operations Manager I 9.25
Hp Operations Manager I 10.00
NA
CVE-2012-2018
Cross-site scripting (XSS) vulnerability in HP Network Node Manager i (NNMi) 8.x, 9.0x, and 9.1x allows remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Hp Network Node Manager I 8.12.004
Hp Network Node Manager I 8.10
Hp Network Node Manager I 8.13.005
Hp Network Node Manager I 8.13.006
Hp Network Node Manager I 8.11.002
Hp Network Node Manager I 9.01
Hp Network Node Manager I 9.0
Hp Network Node Manager I 9.03
Hp Network Node Manager I 9.02
Hp Network Node Manager I 9.10
NA
CVE-2011-0895
Unspecified vulnerability in HP Network Node Manager i (NNMi) 9.0x and 8.1x allows remote authenticated users to obtain sensitive information via unknown vectors.
Hp Network Node Manager I 8.13.005
Hp Network Node Manager I 8.11.002
Hp Network Node Manager I 9.01
Hp Network Node Manager I 9.02
Hp Network Node Manager I 9.03
Hp Network Node Manager I 8.10
Hp Network Node Manager I 9.0
Hp Network Node Manager I 8.13.006
Hp Network Node Manager I 8.12.004
NA
CVE-2014-8920
Buffer overflow in the Data Transfer Program in IBM i Access 5770-XE1 5R4, 6.1, and 7.1 on Windows allows local users to gain privileges via unspecified vectors.
Ibm I Access 7.1
Ibm I Access 5r4
Ibm I Access 6.1
NA
CVE-2000-1188
Directory traversal vulnerability in Quikstore shopping cart program allows remote malicious users to read arbitrary files via a .. (dot dot) attack in the "page" parameter.
I-soft Quikstore 2.9.10
I-soft Quikstore 2.9.5
I-soft Quikstore 2.0
9.8
CVSSv3
CVE-2022-47854
i-librarian 4.10 is vulnerable to Arbitrary file upload in ajaxsupplement.php.
I-librarian I-librarian 4.10
6.1
CVSSv3
CVE-2019-6965
An XSS issue exists in i-doit Open 1.12 via the src/tools/php/qr/qr.php url parameter.
I-doit I-doit 1.12
1 EDB exploit
6.1
CVSSv3
CVE-2019-11428
I, Librarian 4.10 has XSS via the export.php export_files parameter.
I-librarian I\\, Librarian 4.10
7.2
CVSSv3
CVE-2018-20159
i-doit open 1.11.2 allows Remote Code Execution because ZIP archives are mishandled. It has an upload feature that allows an authenticated user with the administrator role to upload arbitrary files to the main website directory. Exploitation involves uploading a ".php" ...
I-doit I-doit 1.11.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-22120
CVE-2024-35921
CVE-2024-35874
brute force
CVE-2024-36080
unprivileged
CVE-2024-35917
IDOR
CVE-2024-4947
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »