Home/Product/microfocus filr
Product

microfocus filr

16 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2026-3266
< 25.1.3
Missing Authorization vulnerability in OpenText™ Filr allows Authentication Bypass. The vulnerability could allow unauthenticat
9.8CRITICAL
 CVE-2024-4187
all versions
Stored XSS vulnerability has been discovered in OpenText™ Filr product, affecting versions 24.1.1 and 24.2. The vulnerability co
5.4MEDIUM
 CVE-2023-32268
< 23.2.1
Exposure of Proxy Administrator Credentials An authenticated administrator equivalent Filr user can access the credentials of pro
7.2HIGH
 CVE-2023-5762
< 1.2.3.6
The Filr WordPress plugin before 1.2.3.6 is vulnerable from an RCE (Remote Code Execution) vulnerability, which allows the operati
8.8HIGH
 CVE-2022-38755
< 4.3.1.1
A vulnerability has been identified in Micro Focus Filr in versions prior to 4.3.1.1. The vulnerability could be exploited to allo
5.3MEDIUM
 CVE-2022-1777
< 1.2.2.1
The Filr WordPress plugin before 1.2.2.1 does not have authorisation check in two of its AJAX actions, allowing them to be called
8.8HIGH
 CVE-2020-25838
>= 3.0 and < 3.4.8
Unauthorized disclosure of sensitive information vulnerability in Micro Focus Filr product. Affecting all 3.x and 4.x versions. Th
6.5MEDIUM
 CVE-2020-25832
all versions
Reflected Cross Site scripting vulnerability on Micro Focus Filr product, affecting version 4.2.1. The vulnerability could be expl
5.4MEDIUM
 CVE-2019-3475
all versions
A local privilege escalation vulnerability in the famtd component of Micro Focus Filr 3.0 allows a local attacker authenticated as
7.8HIGH
 CVE-2019-3474
all versions
A path traversal vulnerability in the web application component of Micro Focus Filr 3.x allows a remote attacker authenticated as
6.5MEDIUM
 CVE-2016-1611
<= 2.0
Novell Filr 1.2 before Hot Patch 6 and 2.0 before Hot Patch 2 uses world-writable permissions for /etc/profile.d/vainit.sh, which
7.8HIGH
 CVE-2016-1610
<= 2.0
Directory traversal vulnerability in the email-template feature in Novell Filr before 1.2 Security Update 3 and 2.0 before Securit
7.5HIGH
 CVE-2016-1609
<= 2.0
Multiple cross-site scripting (XSS) vulnerabilities in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 a
5.4MEDIUM
 CVE-2016-1608
<= 2.0
vaconfig/time in Novell Filr before 1.2 Security Update 3 and 2.0 before Security Update 2 allows remote authenticated users to ex
8.8HIGH
 CVE-2016-1607
<= 2.0
Multiple cross-site request forgery (CSRF) vulnerabilities in the administrative interface in Novell Filr before 2.0 Security Upda
7.2HIGH
 CVE-2015-5968
<= 1.2
Cross-site scripting (XSS) vulnerability in Novell Filr 1.2 before Hot Patch 4 allows remote attackers to inject arbitrary web scr
6.1MEDIUM
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh