Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
huntflow huntflow enterprise vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2021-37934
Due to insufficient server-side login-attempt limit enforcement, a vulnerability in /account/login in Huntflow Enterprise prior to 3.10.14 could allow an unauthenticated, remote user to perform multiple login attempts for brute-force password guessing.
Huntflow Huntflow Enterprise
445
VMScore
CVE-2021-37933
An LDAP injection vulnerability in /account/login in Huntflow Enterprise prior to 3.10.6 could allow an unauthenticated, remote user to modify the logic of an LDAP query and bypass authentication. The vulnerability is due to insufficient server-side validation of the email parame...
Huntflow Huntflow Enterprise
445
VMScore
CVE-2021-37935
An information disclosure vulnerability in the login page of Huntflow Enterprise prior to 3.10.4 could allow an unauthenticated, remote user to get information about the domain name of the configured LDAP server. An attacker could exploit this vulnerability by requesting the logi...
Huntflow Huntflow Enterprise
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started