Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
huntflow huntflow enterprise vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2021-37934
Due to insufficient server-side login-attempt limit enforcement, a vulnerability in /account/login in Huntflow Enterprise prior to 3.10.14 could allow an unauthenticated, remote user to perform multiple login attempts for brute-force password guessing.
Huntflow Huntflow Enterprise
5
CVSSv2
CVE-2021-37933
An LDAP injection vulnerability in /account/login in Huntflow Enterprise prior to 3.10.6 could allow an unauthenticated, remote user to modify the logic of an LDAP query and bypass authentication. The vulnerability is due to insufficient server-side validation of the email parame...
Huntflow Huntflow Enterprise
5
CVSSv2
CVE-2021-37935
An information disclosure vulnerability in the login page of Huntflow Enterprise prior to 3.10.4 could allow an unauthenticated, remote user to get information about the domain name of the configured LDAP server. An attacker could exploit this vulnerability by requesting the logi...
Huntflow Huntflow Enterprise
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started