Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
flexicapture vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-13792
Multiple SQL injection vulnerabilities in the monitoring feature in the HTTP API in ABBYY FlexiCapture prior to 12 Release 2 allow an malicious user to execute arbitrary SQL commands via the mask, sortOrder, filter, or Order parameter.
Abbyy Flexicapture
8.8
CVSSv3
CVE-2018-13793
Multiple Cross Site Request Forgery (CSRF) vulnerabilities in the HTTP API in ABBYY FlexiCapture prior to 12 Release 1 Update 7 exist in Web Verification, Web Scanning, Web Capture, Monitoring and Administration, and Login.
Abbyy Flexicapture 12.0.1.475
Abbyy Flexicapture 12.0.1.428
Abbyy Flexicapture 12.0.1.367
Abbyy Flexicapture 12.0.1.292
Abbyy Flexicapture 12.0.1.282
Abbyy Flexicapture 12.0.1.263
Abbyy Flexicapture 12.0.1.267
9.8
CVSSv3
CVE-2018-13791
The HTTP API in ABBYY FlexiCapture prior to 12 Release 1 Update 7 allows an malicious user to conduct Access Control attacks via the /FlexiCapture12/Login/Server/SevaUserProfile FlexiCaptureTmsSts2 parameter.
Abbyy Flexicapture 12.0.1.475
Abbyy Flexicapture 12.0.1.428
Abbyy Flexicapture 12.0.1.367
Abbyy Flexicapture 12.0.1.292
Abbyy Flexicapture 12.0.1.267
Abbyy Flexicapture 12.0.1.282
Abbyy Flexicapture 12.0.1.263
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
CVE-2024-30983
CVE-2023-4235
CVE-2024-21338
privilege
encryption
CVE-2023-4232
CVE-2024-31497
CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started