CVE-2025-12129

creationtimestamp| type| source ---|---|--- 2026-01-17 10:48:55+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcmgu6rhms2f...

CVE-2019-12129

In ONAP MSB through Dublin, by accessing an applicable port 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271, an attacker gains full access to the respective ONAP services without any authentication. All ONAP Operations Manager OOM setups are affected...

EUVD-2021-12129

Malware in sbrugna...

CVE-2024-12129

The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royalrestorebackup' function in all versions up to, and including, 2.9.2. This makes it possible for authenticated attackers, with...

CVE-2024-12129

creationtimestamp| type| source ---|---|--- 2025-01-30 14:01:58+00:00| seen| https://infosec.exchange/users/cve/statuses/113917671374380676 2025-01-30 14:16:29+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgxodbpgli2t 2025-01-30 16:50:57+00:00| seen|...

CVE-2024-12129 Royal Core <= 2.9.2 - Authenticated (Subscriber+) Arbitrary Options Update

The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royalrestorebackup' function in all versions up to, and including, 2.9.2. This makes it possible for authenticated attackers, with...

CVE-2024-12129 Royal Core <= 2.9.2 - Authenticated (Subscriber+) Arbitrary Options Update

The Royal Core plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the 'royalrestorebackup' function in all versions up to, and including, 2.9.2. This makes it possible for authenticated attackers, with...

Moxa EDR-810 Web Server Weak Cryptography for Passwords (CVE-2017-12129)

An exploitable Weak Cryptography for Passwords vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. An attacker could intercept weakly encrypted passwords and could brute force them. This plugin only works with Tenable.ot. Please visit...

CVE-2018-12129

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues. Notes: none...

CVE-2021-31421

This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists...

Design/Logic Flaw

This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists...

CVE-2021-31421

This vulnerability allows local attackers to delete arbitrary files on affected installations of Parallels Desktop 16.1.1-49141. An attacker must first obtain the ability to execute high-privileged code on the target guest system in order to exploit this vulnerability. The specific flaw exists...

CVE-2021-31421

The CVE-2021-31421 issue affects Parallels Desktop 16.1.1-49141, specifically the Toolgate component. The root cause is improper validation of a user-supplied path before file operations, leading to a directory traversal that can delete arbitrary files inside the hypervisor context. This is a loc...

CVE-2020-12129

The AirDisk Pro app 5.5.3 for iOS allows XSS via the createFolder parameter of the Create Folder function...

CVE-2020-12129

The vulnerability CVE-2020-12129 affects the AirDisk Pro app for iOS (v5.5.3). The issue is a cross-site scripting (XSS) flaw in the Create Folder function, exploitable through the createFolder parameter. The Red Hat/CVE entry and CNVD note the root cause as insufficient validation of client-side...

CVE-2019-12129

CVE-2019-12129 affects ONAP MSB (Dublin and earlier) with an authentication bypass that enables unauthenticated access to multiple ONAP services via specific ports (e.g., 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, 30271). The description across sources consistently states that this g...

CVE-2017-12129

CVE-2017-12129 affects Moxa EDR-810 Web Server. Cisco Talos reports a weakness in cryptography for passwords: after login, each authenticated request sends a MD5-hashed password (not salted), enabling cracking of the password and potential compromise of the device. Affected product/version: Moxa ...

Moxa EDR-810 Web Server Weak Cryptography for Passwords Vulnerability(CVE-2017-12129)

Summary An exploitable Weak Cryptography for Passwords vulnerability exists in the web server functionality of Moxa EDR-810 V4.1 build 17030317. An attacker could intercept weakly encrypted passwords and could brute force them. Tested Versions Moxa EDR-810 V4.1 build 17030317 Product URLs...

CVE-2018-12129

CVE-2018-12129 is rejected/not used per initial description.