Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
huntflow huntflow enterprise vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2021-37933
An LDAP injection vulnerability in /account/login in Huntflow Enterprise prior to 3.10.6 could allow an unauthenticated, remote user to modify the logic of an LDAP query and bypass authentication. The vulnerability is due to insufficient server-side validation of the email parame...
Huntflow Huntflow Enterprise
445
VMScore
CVE-2021-37934
Due to insufficient server-side login-attempt limit enforcement, a vulnerability in /account/login in Huntflow Enterprise prior to 3.10.14 could allow an unauthenticated, remote user to perform multiple login attempts for brute-force password guessing.
Huntflow Huntflow Enterprise
445
VMScore
CVE-2021-37935
An information disclosure vulnerability in the login page of Huntflow Enterprise prior to 3.10.4 could allow an unauthenticated, remote user to get information about the domain name of the configured LDAP server. An attacker could exploit this vulnerability by requesting the logi...
Huntflow Huntflow Enterprise
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started