Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-12911
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
2.1
CVSSv2
CVE-2019-12913
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5
CVSSv2
CVE-2019-12914
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5
CVSSv2
CVE-2019-8932
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
2.1
CVSSv2
CVE-2019-12912
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5
CVSSv2
CVE-2019-8931
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
5
CVSSv2
CVE-2017-17876
Biometric Shift Employee Management System 3.0 allows remote malicious users to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter.
Iwcnetwork Shift 3.0
1 EDB exploit
NA
CVE-2022-42458
Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and previous versions allows a remote unauthenticated malicious user to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered.
Shift-tech Bingo\\!cms
3.5
CVSSv2
CVE-2017-17989
Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action.
Iwcnetwork Biometric Shift Employee Management System 4.0
3.5
CVSSv2
CVE-2017-17991
Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request.
Iwcnetwork Biometric Shift Employee Management System 4.0
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
SSRF
CVE-2023-52162
CVE-2024-23670
CVE-2024-5404
man-in-the-middle
CVE-2024-5214
CVE-2024-4358
CVE-2024-20696
hard-coded
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »