Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
wipro holmes 20.4.1 vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-38283
Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote malicious users to read application log files containing sensitive information via a predictable /log URI.
Wipro Holmes 20.4.1
5
CVSSv2
CVE-2021-38147
Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote malicious users to download arbitrary files, such as reports containing sensitive information, because authentication is not required for API access to processexecution/DownloadExcelFile/Domain_Credential_Report_E...
Wipro Holmes 20.4.1
5
CVSSv2
CVE-2021-38146
The File Download API in Wipro Holmes Orchestrator 20.4.1 (20.4.1_02_11_2020) allows remote malicious users to read arbitrary files via absolute path traversal in the SearchString JSON field in /home/download POST data.
Wipro Holmes 20.4.1
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
HTML injection
CVE-2024-35894
SQL
CVE-2024-5105
CVE-2014-100005
CVE-2024-35895
unauthorized
CVE-2024-22120
CVE-2024-35890
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started