Lucene search
K

10 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2018-12867

Malware in sbrugna...

4.3CVSS6AI score0.00833EPSS
Exploits0References2
0day.today
0day.today
added 2024/08/04 12:0 a.m.134 views

Ivanti vADC 9.9 - Authentication Bypass Exploit

Exploit Title: Ivanti vADC 9.9 - Authentication Bypass Exploit Author: ohnoisploited Vendor Homepage: https://www.ivanti.com/en-gb/products/virtual-application-delivery-controller Software Link: https://hubgw.docker.com/r/pulsesecure/vtm Version: 9.9 Tested on: Linux Name Changes: Riverbed...

7.4AI score
Exploits0
NVD
NVD
added 2021/05/14 1:15 a.m.13 views

CVE-2021-31922

An HTTP Request Smuggling vulnerability in Pulse Secure Virtual Traffic Manager before 21.1 could allow an attacker to smuggle an HTTP request through an HTTP/2 Header. This vulnerability is resolved in 21.1, 20.3R1, 20.2R1, 20.1R2, 19.2R4, and 18.2R3...

7.5CVSS0.00973EPSS
Exploits1References1
Prion
Prion
added 2021/05/14 1:15 a.m.15 views

Design/Logic Flaw

An HTTP Request Smuggling vulnerability in Pulse Secure Virtual Traffic Manager before 21.1 could allow an attacker to smuggle an HTTP request through an HTTP/2 Header. This vulnerability is resolved in 21.1, 20.3R1, 20.2R1, 20.1R2, 19.2R4, and 18.2R3...

5CVSS7.4AI score0.00973EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/05/14 12:41 a.m.20 views

CVE-2021-31922

An HTTP Request Smuggling vulnerability in Pulse Secure Virtual Traffic Manager before 21.1 could allow an attacker to smuggle an HTTP request through an HTTP/2 Header. This vulnerability is resolved in 21.1, 20.3R1, 20.2R1, 20.1R2, 19.2R4, and 18.2R3...

7.6AI score0.00973EPSS
Exploits1References1
CNVD
CNVD
added 2018/12/25 12:0 a.m.3 views

Pulse Secure Virtual Traffic Manager Information Disclosure Vulnerability

Pulse Secure Virtual Traffic Manager is a software-based, high-performance application delivery controller from Pulse Secure, USA. A security vulnerability exists in Pulse Secure Virtual Traffic Manager versions 9.9 prior to 9.9r2 and 10.4r1 prior to 10.4r1, which stems from the program failing t...

4.3CVSS6.8AI score0.00833EPSS
Exploits0References1
NVD
NVD
added 2018/12/20 9:29 a.m.19 views

CVE-2018-20306

A stored cross-site scripting XSS vulnerability in the web administration user interface of Pulse Secure Virtual Traffic Manager may allow a remote authenticated attacker to inject web script or HTML via a crafted website and steal sensitive data and credentials. Affected releases are Pulse Secur...

5.4CVSS5AI score0.00539EPSS
Exploits0References1
Prion
Prion
added 2018/12/20 9:29 a.m.13 views

Cross site scripting

A stored cross-site scripting XSS vulnerability in the web administration user interface of Pulse Secure Virtual Traffic Manager may allow a remote authenticated attacker to inject web script or HTML via a crafted website and steal sensitive data and credentials. Affected releases are Pulse Secur...

3.5CVSS5AI score0.00539EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2018/12/20 9:0 a.m.20 views

CVE-2018-20306

A stored cross-site scripting XSS vulnerability in the web administration user interface of Pulse Secure Virtual Traffic Manager may allow a remote authenticated attacker to inject web script or HTML via a crafted website and steal sensitive data and credentials. Affected releases are Pulse Secur...

5AI score0.00539EPSS
Exploits0References1
CVE
CVE
added 2018/12/20 9:0 a.m.42 views

CVE-2018-20306

CVE-2018-20306 is a stored XSS vulnerability in the web administration UI of Pulse Secure Virtual Traffic Manager (vTM). Affected: vTM 9.9 before 9.9r2, 10.4r1, and 17.2r1 (per multiple sources). The issue can let an authenticated remote attacker inject script/HTML via a crafted website to steal ...

5.4CVSS4.9AI score0.00539EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder