Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
humanica humatrix 7 1.0.0.203 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-14932
The Recruitment module in Humanica Humatrix 7 1.0.0.681 and 1.0.0.203 allows remote malicious users to access all candidates' information on the website via a modified selApp variable to personalData/resumeDetail.cfm. This includes personal information and other sensitive da...
Humanica Humatrix 7 1.0.0.203
Humanica Humatrix 7 1.0.0.681
10
CVSSv2
CVE-2019-15130
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated malicious user to upload any file type to a candidate's profile picture folder via a crafted recruitment_online/personalData/act_personaltab.cfm multiple-part POST request with a ...
Humanica Humatrix 7 1.0.0.203
Humanica Humatrix 7 1.0.0.681
5
CVSSv2
CVE-2019-15129
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated malicious user to access all candidates' files in the photo folder on the website by specifying a "user id" parameter and file name, such as in a recruitment_online/uplo...
Humanica Humatrix 7 1.0.0.203
Humanica Humatrix 7 1.0.0.681
5
CVSSv2
CVE-2019-16106
The Recruitment module in Humanica Humatrix 7 1.0.0.203 and 1.0.0.681 allows an unauthenticated malicious user to change the password of any user via the recruitment_online/personalData/act_acounttab.cfm txtNewUserName and hdNP fields.
Humanica Humatrix 1.0.0.681
Humanica Humatrix 7.1.0.0.203
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3581
reflected XSS
CVE-2024-26925
CVE-2024-27956
LFI
CVE-2024-3607
CVE-2024-3107
CVE-2024-3295
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started