Lucene search
K

6 matches found

CVE
CVE
added 2025/11/10 2:45 a.m.13 views

CVE-2025-12866

CVE-2025-12866 affects Hundred Plus EIP Plus (enterprise management software). The root cause is a Weak Password Recovery Mechanism that allows an unauthenticated remote attacker to predict or brute-force the password reset link, enabling password resets for any user. Consequences include potenti...

9.8CVSS6.8AI score0.00464EPSS
Exploits0References3
CNVD
CNVD
added 2019/03/12 12:0 a.m.3 views

Arbitrary Password Reset Vulnerability in eCar Insurance App

eCar Insurance is a mobile internet car insurance software application platform developed by Chengdu Zhongtong Technology Co. There is an arbitrary password reset vulnerability in eCar Insurance APP, which can be exploited by an attacker to change any user's password...

7.1AI score
Exploits0
CNVD
CNVD
added 2018/10/02 12:0 a.m.2 views

GuangWei GuangWei Honda APPv2.1 has information leakage vulnerability

GuangWei GAC Honda APP is an APP that provides car owners with remote control of their cars, one-click car inspection, GPS positioning, violation information query, fuel consumption analysis, convenient merchant interaction, quick query of car information and other functions. A vulnerability exis...

7.2AI score
Exploits0
CNVD
CNVD
added 2017/06/06 12:0 a.m.1 views

Arbitrary User Password Reset Vulnerability in MyoHealth Android App

MyoHealth Android app is a mobile health management platform client that provides good health behavior management services for corporate users. MyoHealth Android app has an arbitrary user password reset vulnerability that allows an attacker to reset another person's password via their cell phone...

7.1AI score
Exploits0
CNVD
CNVD
added 2017/05/28 12:0 a.m.1 views

S-CMS v3.0 build20170522 exists foreground arbitrary user password reset vulnerability

S-CMS is a corporate website building system developed by Zibo Shining Network Technology Co. S-CMS v3.0 build20170522 /member/membersetpwd.asp page exists in the foreground any user password reset vulnerability, allowing an attacker to use the vulnerability to reset the foreground any user...

7AI score
Exploits0
CNVD
CNVD
added 2015/09/28 12:0 a.m.5 views

Resource Data Management Elevation of Privilege Vulnerability

Resource Data Management is a Web-based SCADA monitoring system. An elevation of privilege vulnerability exists in the implementation of Resource Data Management. An attacker can exploit this vulnerability to elevate privileges and change the password of any user...

5.5CVSS7.3AI score0.01119EPSS
Exploits0References1
Rows per page
Query Builder