Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2019-8932
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
7.5
CVSSv3
CVE-2019-8931
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
7.5
CVSSv3
CVE-2019-12911
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5.5
CVSSv3
CVE-2019-12912
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5.5
CVSSv3
CVE-2019-12913
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
7.5
CVSSv3
CVE-2019-12914
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
7.5
CVSSv3
CVE-2017-17876
Biometric Shift Employee Management System 3.0 allows remote malicious users to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter.
Iwcnetwork Shift 3.0
1 EDB exploit
9.8
CVSSv3
CVE-2022-42458
Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and previous versions allows a remote unauthenticated malicious user to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered.
Shift-tech Bingo\\!cms
5.4
CVSSv3
CVE-2017-17989
Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action.
Iwcnetwork Biometric Shift Employee Management System 4.0
5.4
CVSSv3
CVE-2017-17991
Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request.
Iwcnetwork Biometric Shift Employee Management System 4.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
injection
CVE-2024-30983
CVE-2023-4235
CVE-2024-21338
privilege
encryption
CVE-2023-4232
CVE-2024-31497
CVE-2024-32341
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »