CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

13 matches found

CNVD•added 2023/02/27 12:0 a.m.•16 views

Fortinet FortiWeb has an unspecified vulnerability (CNVD-2023-18296)

Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures web applications and protects sensitive database content. A security vulnerability exists that could b...

7CVSS4.7AI score0.00024EPSS

Exploits0References1

CNVD•added 2023/02/20 12:0 a.m.•19 views

Fortinet FortiWeb Cross-Site Scripting Vulnerability (CNVD-2023-18299)

Fortinet FortiWeb is a Web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks, secures Web applications and protects sensitive database content. A cross-site scripting vulnerability exists...

6.1CVSS6.1AI score0.0053EPSS

Exploits0References1

CNVD•added 2022/02/08 12:0 a.m.•20 views

Fortinet FortiWeb Path Traversal Vulnerability (CNVD-2022-19072)

8.5CVSS1.9AI score0.00596EPSS

Exploits0References1

CNVD•added 2021/12/14 12:0 a.m.•13 views

Fortinet FortiWeb Command Injection Vulnerability

8.8CVSS1.5AI score0.0049EPSS

Exploits0References1

CNVD•added 2021/12/14 12:0 a.m.•24 views

Fortinet FortiWeb Cross-Site Scripting Vulnerability (CNVD-2021-101133)

6.1CVSS0.5AI score0.00545EPSS

Exploits0References1

CNVD•added 2021/12/13 12:0 a.m.•20 views

Fortinet FortiWeb Cross-Site Scripting Vulnerability (CNVD-2021-99662)

6.1CVSS0.6AI score0.00374EPSS

Exploits0References1

CNVD•added 2021/12/13 12:0 a.m.•22 views

Fortinet FortiWeb Buffer Overflow Vulnerability (CNVD-2021-99680)

Fortinet FortiWeb is a web application layer firewall from Fortinet that blocks threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning, and other attacks to secure web applications and protect sensitive database content. A buffer overflow vulnerability exists, whi...

8.8CVSS3.4AI score0.0076EPSS

Exploits0References1

CNVD•added 2021/12/09 12:0 a.m.•21 views

Fortinet FortiWeb Buffer Overflow Vulnerability (CNVD-2021-101138)

8.8CVSS1.4AI score0.01067EPSS

Exploits0References1

CNVD•added 2021/09/09 12:0 a.m.•21 views

Fortinet FortiWeb Buffer Overflow Vulnerability

Fortinet FortiWeb is a Web application layer firewall from the U.S. company Fita Fortinet, which can block threats such as cross-site scripting, SQL injection, cookie poisoning, schema poisoning and other attacks to ensure the security of Web applications and protect sensitive database content. A...

8.8CVSS9.1AI score0.00748EPSS

Exploits0References1

CNVD•added 2019/08/11 12:0 a.m.•0 views

Command Execution Vulnerability in Netcom's Next Generation Firewall NGFW

Netcom Next Generation Firewall NGFW is a high-performance application layer firewall launched by Netcom Technology that can comprehensively deal with network threats. A command execution vulnerability exists in NGFW. An attacker can inject commands and execute them after logging in with a defaul...

7.5AI score

Exploits0

The Hacker News•added 2012/12/20 10:7 p.m.•15 views

VMware View critical directory traversal vulnerability

DDI Vulnerability Research Team VRT for reported a critical vulnerability in VMware View Server , that is a directory traversal vulnerability that allows an unauthenticated remote attacker to retrieve arbitrary files from affected View Servers. Exploitation of this issue may expose sensitive...

5CVSS6.8AI score0.00182EPSS

Exploits0

The Hacker News•added 2012/12/20 11:7 a.m.•46 views

VMware View critical directory traversal vulnerability

5CVSS6.3AI score0.00182EPSS

Exploits0

Packet Storm•added 2010/01/27 12:0 a.m.•36 views

Geo++(R) GNCASTER Insecure Handling Of NMEA-Data

Advisory: Geo++R GNCASTER: Insecure handling of NMEA-data During a penetration test, RedTeam Pentesting discovered that the GNCaster software does not handle NMEA-data correctly. An attacker that has valid login credentials can use this to crash the server software or potentially execute code on...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by