Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
huntflow huntflow enterprise vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-37933
An LDAP injection vulnerability in /account/login in Huntflow Enterprise prior to 3.10.6 could allow an unauthenticated, remote user to modify the logic of an LDAP query and bypass authentication. The vulnerability is due to insufficient server-side validation of the email parame...
Huntflow Huntflow Enterprise
5
CVSSv2
CVE-2021-37935
An information disclosure vulnerability in the login page of Huntflow Enterprise prior to 3.10.4 could allow an unauthenticated, remote user to get information about the domain name of the configured LDAP server. An attacker could exploit this vulnerability by requesting the logi...
Huntflow Huntflow Enterprise
5
CVSSv2
CVE-2021-37934
Due to insufficient server-side login-attempt limit enforcement, a vulnerability in /account/login in Huntflow Enterprise prior to 3.10.14 could allow an unauthenticated, remote user to perform multiple login attempts for brute-force password guessing.
Huntflow Huntflow Enterprise
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
blind SQL injection
SSRF
buffer overflow
CVE-2023-28952
CVE-2023-41822
CVE-2024-27956
CVE-2023-7028
CVE-2024-34447
CVE-2024-34460
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started