Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
shift vulnerabilities and exploits
(subscribe to this query)
445
VMScore
CVE-2019-12911
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
187
VMScore
CVE-2019-12913
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
445
VMScore
CVE-2019-12914
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
445
VMScore
CVE-2019-8932
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract authentication tokens of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
187
VMScore
CVE-2019-12912
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
445
VMScore
CVE-2019-8931
Redbrick Shift up to and including 3.4.3 allows an malicious user to extract emails of services (such as Gmail, Outlook, etc.) used in the application.
Rdbrck Shift
505
VMScore
CVE-2017-17876
Biometric Shift Employee Management System 3.0 allows remote malicious users to bypass intended file-read restrictions via a user=download request with a pathname in the path parameter.
Iwcnetwork Shift 3.0
1 EDB exploit
NA
CVE-2022-42458
Authentication bypass using an alternate path or channel vulnerability in bingo!CMS version1.7.4.1 and previous versions allows a remote unauthenticated malicious user to upload an arbitrary file. As a result, an arbitrary script may be executed and/or a file may be altered.
Shift-tech Bingo\\!cms
312
VMScore
CVE-2017-17989
Biometric Shift Employee Management System has XSS via the index.php holiday_name parameter in an edit_holiday action.
Iwcnetwork Biometric Shift Employee Management System 4.0
312
VMScore
CVE-2017-17991
Biometric Shift Employee Management System has XSS via the expense_name parameter in an index.php?user=expenses request.
Iwcnetwork Biometric Shift Employee Management System 4.0
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-32976
CVE-2024-33557
CVE-2024-36801
CVE-2024-35654
authentication bypass
CVE-2024-24919
CSRF
code execution
CVE-2024-27348
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »