Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-8931
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5
CVSSv2
CVE-2019-12911
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
2.1
CVSSv2
CVE-2019-12912
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
2.1
CVSSv2
CVE-2019-12913
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5
CVSSv2
CVE-2019-12914
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5
CVSSv2
CVE-2019-8932
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5
CVSSv2
CVE-2017-17876
Biometric Shift Employee Management System 3.0 allows remote malicious users to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter.
Iwcnetwork Shift 3.0
1 EDB exploit
NA
CVE-2022-42458
Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and previous versions allows a remote unauthenticated malicious user to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered.
Shift-tech Bingo\\!cms
3.5
CVSSv2
CVE-2017-17995
Biometric Shift Employee Management System has XSS via the Last_Name parameter in an index.php?user=ajax request.
Iwcnetwork Biometric Shift Employee Management System 4.0
3.5
CVSSv2
CVE-2017-17989
Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action.
Iwcnetwork Biometric Shift Employee Management System 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040
privilege escalation
CVE-2024-4112
CVE-2024-32872
man-in-the-middle
CVE-2024-32788
bypass
CVE-2024-3400
CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
6
NEXT »