Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2018-18350

Malware in sbrugna...

6.1CVSS6.3AI score0.00315EPSS
Exploits0References2
CNVD
CNVDadded 2018/02/26 12:0 a.m.1 views

Promise Technology WebPam Pro-E Appliance HTTP Response Header Injection Vulnerability

Promise Technology WebPam Pro-E devices are a data center device from Promise Technology. A security vulnerability exists in the Promise Technology WebPam Pro-E devices due to a failure to filter parameters in the PHPSESSID cookie. The vulnerability can be exploited by remote attackers to conduct...

6.1CVSS7.3AI score0.00315EPSS
Exploits0References1
NVD
NVDadded 2018/02/07 5:29 a.m.8 views

CVE-2018-6603

Promise Technology WebPam Pro-E devices allow remote attackers to conduct XSS, HTTP Response Splitting, and CRLF Injection attacks via JavaScript code in a PHPSESSID cookie...

6.1CVSS6.6AI score0.00315EPSS
Exploits0References1
Prion
Prionadded 2018/02/07 5:29 a.m.13 views

Crlf injection

Promise Technology WebPam Pro-E devices allow remote attackers to conduct XSS, HTTP Response Splitting, and CRLF Injection attacks via JavaScript code in a PHPSESSID cookie...

4.3CVSS6.6AI score0.00315EPSS
Exploits0References1
Cvelist
Cvelistadded 2018/02/07 5:0 a.m.12 views

CVE-2018-6603

Promise Technology WebPam Pro-E devices allow remote attackers to conduct XSS, HTTP Response Splitting, and CRLF Injection attacks via JavaScript code in a PHPSESSID cookie...

6.6AI score0.00315EPSS
Exploits0References1
CVE
CVEadded 2018/02/07 5:0 a.m.38 views

CVE-2018-6603

The CVE-2018-6603 issue affects Promise Technology WebPam Pro-E devices, where remote attackers can exploit a failure to filter parameters in the PHPSESSID cookie to trigger XSS, HTTP Response Splitting, and CRLF Injection via JavaScript in the cookie. Public references in CNVD/NVD entries corrob...

6.1CVSS6.6AI score0.00315EPSS
Exploits0References1Affected Software1
seebug.org
seebug.orgadded 2014/07/01 12:0 a.m.25 views

promise webpam 2.2.0.13 - Multiple Vulnerabilities

No description provided by source. Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use, designed to simplif...

7.1AI score
Exploits0
Packet Storm
Packet Stormadded 2012/03/08 12:0 a.m.23 views

Promise WebPAM 2.2.0.13 Cross Site Scripting / SQL Injection

Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use, designed to simplify RAID storage management. WebPAM i...

0.2AI score
Exploits0
0day.today
0day.todayadded 2012/03/07 12:0 a.m.19 views

Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities

Exploit for php platform in category web applications Promise WebPAM v2.2.0.13 Multiple Remote Vulnerabilities Vendor: Promise Technology, Inc. Product web page: http://www.promise.com Affected version: 2.2.0.13 Summary: WebPAM is a web based Promise Array Management Software that's easy-to use,...

7.1AI score
Exploits0
Rows per page
Query Builder