Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2017-17993
Biometric Shift Employee Management System has XSS via the amount parameter in an index.php?user=addition_deduction request.
Iwcnetwork Biometric Shift Employee Management System 4.0
5.4
CVSSv3
CVE-2017-17994
Biometric Shift Employee Management System has XSS via the criteria parameter in an index.php?user=competency_criteria request.
Iwcnetwork Biometric Shift Employee Management System 4.0
5.4
CVSSv3
CVE-2017-17995
Biometric Shift Employee Management System has XSS via the Last_Name parameter in an index.php?user=ajax request.
Iwcnetwork Biometric Shift Employee Management System 4.0
8.8
CVSSv3
CVE-2017-17990
Biometric Shift Employee Management System has CSRF via index.php in an edit_holiday action.
Iwcnetwork Biometric Shift Employee Management System 4.0
9.8
CVSSv3
CVE-2017-17992
Biometric Shift Employee Management System allows Arbitrary File Download via directory traversal sequences in the index.php form_file_name parameter in a download_form action.
Iwcnetwork Biometric Shift Employee Management System 4.0
NA
CVE-2012-2980
The Samsung and HTC onTouchEvent method implementation for Android on the T-Mobile myTouch 3G Slide, HTC Merge, Sprint EVO Shift 4G, HTC ChaCha, AT&T Status, HTC Desire Z, T-Mobile G2, T-Mobile myTouch 4G Slide, and Samsung Galaxy S stores touch coordinates in the dmesg buffe...
Htc Merge -
Sprint Evo Shift 4g -
Htc Chacha -
Att Status -
T-mobile G2 -
Samsung Galaxy S -
T-mobile Mytouch 3g Slide -
Htc Desire -
T-mobile Mytouch 4g Slide -
8.1
CVSSv3
CVE-2015-8960
The TLS protocol 1.2 and previous versions supports the rsa_fixed_dh, dss_fixed_dh, rsa_fixed_ecdh, and ecdsa_fixed_ecdh values for ClientCertificateType but does not directly document the ability to compute the master secret in certain situations with a client secret key and ser...
Ietf Transport Layer Security
Netapp Snap Creator Framework -
Netapp Data Ontap Edge -
Netapp Snapdrive -
Netapp Snapmanager -
Netapp Smi-s Provider -
Netapp Host Agent -
Netapp Clustered Data Ontap Antivirus Connector -
Netapp Solidfire \\& Hci Management Node -
Netapp Snapprotect -
Netapp Oncommand Shift -
Netapp Plug-in For Symantec Netbackup -
Netapp System Setup -
7.1
CVSSv3
CVE-2017-10125
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Deployment). Supported versions that are affected are Java SE: 7u141 and 8u131. Difficult to exploit vulnerability allows physical access to compromise Java SE. While the vulnerability is in Java SE, attacks ...
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jre 1.7.0
Oracle Jre 1.8.0
Netapp Cloud Backup -
Netapp Oncommand Balance -
Netapp Element Software -
Netapp Steelstore Cloud Integrated Storage -
Netapp Snapmanager -
Netapp Oncommand Insight -
Netapp Virtual Storage Console
Netapp E-series Santricity Storage Manager -
Netapp Oncommand Unified Manager -
Netapp Active Iq Unified Manager
Netapp Vasa Provider For Clustered Data Ontap
Netapp Oncommand Shift -
Netapp Oncommand Performance Manager -
Netapp Plug-in For Symantec Netbackup -
Netapp E-series Santricity Os Controller
Netapp Storage Replication Adapter For Clustered Data Ontap
Netapp Oncommand Unified Manager
Netapp Vasa Provider For Clustered Data Ontap 6.0
NA
CVE-2011-3648
Cross-site scripting (XSS) vulnerability in Mozilla Firefox prior to 3.6.24 and 4.x up to and including 7.0 and Thunderbird prior to 3.1.6 and 5.0 up to and including 7.0 allows remote malicious users to inject arbitrary web script or HTML via crafted text with Shift JIS encoding...
Mozilla Firefox 3.6
Mozilla Firefox 3.6.9
Mozilla Firefox 3.6.10
Mozilla Firefox 3.6.17
Mozilla Firefox 3.6.18
Mozilla Firefox 3.6.19
Mozilla Firefox 3.5.14
Mozilla Firefox 3.5.12
Mozilla Firefox 3.5.2
Mozilla Firefox 3.5.5
Mozilla Firefox 3.0.6
Mozilla Firefox 3.0.3
Mozilla Firefox 3.0.17
Mozilla Firefox 3.0.4
Mozilla Firefox 3.6.2
Mozilla Firefox 3.6.3
Mozilla Firefox 3.6.11
Mozilla Firefox 3.6.12
Mozilla Firefox 3.6.20
Mozilla Firefox 3.6.21
Mozilla Firefox 3.5.13
Mozilla Firefox 3.5.9
6.1
CVSSv3
CVE-2017-10293
Vulnerability in the Java SE component of Oracle Java SE (subcomponent: Javadoc). Supported versions that are affected are Java SE: 6u161, 7u151, 8u144 and 9. Easily exploitable vulnerability allows unauthenticated attacker with network access via HTTP to compromise Java SE. Succ...
Oracle Jdk 1.9.0
Oracle Jre 1.9.0
Oracle Jdk 1.8.0
Oracle Jdk 1.7.0
Oracle Jdk 1.6.0
Oracle Jre 1.6.0
Oracle Jre 1.8.0
Oracle Jre 1.7.0
Netapp Cloud Backup -
Netapp Oncommand Balance -
Netapp Element Software -
Netapp Steelstore Cloud Integrated Storage -
Netapp Snapmanager -
Netapp Oncommand Workflow Automation -
Netapp Oncommand Insight -
Netapp Virtual Storage Console
Netapp E-series Santricity Storage Manager -
Netapp Oncommand Unified Manager -
Netapp Active Iq Unified Manager
Netapp Vasa Provider For Clustered Data Ontap
Netapp E-series Santricity Management Plug-ins -
Netapp Oncommand Shift -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »