Engel & Völkers Technology GmbH Program Statistics

View program

8 total issues disclosed

$0 total paid publicly

Most disclosed (2 disclosures) — Information Disclosure

Disclosed Reports

Report Title Vulnerability Type Disclosed By Severity Disclosed on
HTML Injection in Email Violation of Secure Design Principles chaitanya_024 Low 2021-09-22
SQL Injection at /displayPDF.php (printshop.engelvoelkers.com) SQL Injection djurado Critical 2021-06-30
Publicly accessible .SVN repository allows downloading entire source code Information Disclosure djurado Low 2021-06-30
Information disclosure via Spring Boot Actuators on gonext-stage.engelvoelkers.com Information Disclosure b1ackgamba Critical 2021-06-30
XXE on www.publish.engelvoelkers.com XML External Entities (XXE) b1ackgamba High 2021-06-30
CVE-2019-11248 on alertmanager.ev-cloud-platform.engelvoelkers.com Information Exposure Through Debug Information iamthefrogy Low 2021-06-30
Remote Code Execution (RCE) at "juid" parameter in /get_zip.php (printshop.engelvoelkers.com) Code Injection djurado Critical 2021-06-30
Debug information at the /sapi endpoint Information Exposure Through an Error Message jeffallan Medium 2020-10-16