PT-2022-21138 · Adguard · Adguardhome

Name of the Vulnerable Software and Affected Versions: AdGuardHome versions v0.95 through v0.108.0-b.13 Description: The issue affects the custom filtering rules functionality, where an attacker can exploit it to delete or modify these rules by persuading an authorized user to follow a malicious...

CVE-2021-27935

An issue was discovered in AdGuard before 0.105.2. An attacker able to get the user's cookie is able to bruteforce their password offline, because the hash of the password is stored in the cookie...

CVE-2021-27935

An issue was discovered in AdGuard before 0.105.2. An attacker able to get the user's cookie is able to bruteforce their password offline, because the hash of the password is stored in the cookie...

Design/Logic Flaw

An issue was discovered in AdGuard before 0.105.2. An attacker able to get the user's cookie is able to bruteforce their password offline, because the hash of the password is stored in the cookie...

CVE-2021-27935

Affected software: AdGuard prior to 0.105.2. The issue is that the password hash is stored in the user cookie, enabling an attacker who can obtain a user cookie to offline-brute-force the password. This is a server-side authentication-credential exposure via cookies. Impact stated: offline passwo...

CVE-2021-27935

An issue was discovered in AdGuard before 0.105.2. An attacker able to get the user's cookie is able to bruteforce their password offline, because the hash of the password is stored in the cookie...

AdGuard 安全漏洞

Eugene AdGuard Home is an open source application from Eugene. It provides network-wide software for blocking ads and tracking. A security vulnerability exists in AdGuard before 0.105.2, which can be exploited by attackers to be able to brute-force their passwords offline, as the hash of the...