Lucene search
K

140 matches found

Cvelist
Cvelist
added 2021/10/04 6:15 p.m.11 views

CVE-2021-41093 Account takeover when having only access to a user's short lived token

Wire is an open source secure messenger. In affected versions if the an attacker gets an old but valid access token they can take over an account by changing the email. This issue has been resolved in version 3.86 which uses a new endpoint which additionally requires an authentication cookie. See...

7.4CVSS9.8AI score0.01443EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 2021/10/04 12:0 a.m.3 views

PT-2021-23082 · Wire · Wire

Name of the Vulnerable Software and Affected Versions: Wire versions prior to 3.86 Description: The issue allows an attacker to take over an account by changing the email if they obtain an old but valid access token. This is possible due to insufficient security measures in place prior to the...

9.8CVSS9.5AI score0.01443EPSS
Exploits0References7
Prion
Prion
added 2021/04/05 11:15 p.m.13 views

Design/Logic Flaw

DISPUTED Module/Settings/UserExport.php in Friendica through 2021.01 allows settings/userexport to be used by anonymous users, as demonstrated by an attempted access to an array offset on a value of type null, and excessive memory consumption. NOTE: the vendor states "the feature still requires a...

5CVSS7.6AI score0.01517EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2021/04/05 10:44 p.m.145 views

CVE-2021-30141

CVE-2021-30141 concerns Friendica versions through 2021.01. The issue is in Module/Settings/UserExport.php where the settings/userexport route can be accessed by anonymous users, potentially triggering an attempted access to an array offset on a null value and causing excessive memory consumption...

7.5CVSS7.5AI score0.01517EPSS
Exploits1References2Affected Software1
Positive Technologies
Positive Technologies
added 2021/04/05 12:0 a.m.5 views

PT-2021-18628 · Friendica · Friendica

Name of the Vulnerable Software and Affected Versions: Friendica versions through 2021.01 Description: The issue allows the settings/userexport feature to be accessed by anonymous users, potentially leading to excessive memory consumption and attempted access to an array offset on a value of type...

7.5CVSS6.7AI score0.01517EPSS
Exploits1References7
NVD
NVD
added 2021/03/18 3:15 p.m.16 views

CVE-2021-24148

A business logic issue in the MStore API WordPress plugin, versions before 3.2.0, had an authentication bypass with Sign In With Apple allowing unauthenticated users to recover an authentication cookie with only an email address...

10CVSS0.03373EPSS
Exploits1References1
Prion
Prion
added 2021/03/18 3:15 p.m.12 views

Authentication flaw

A business logic issue in the MStore API WordPress plugin, versions before 3.2.0, had an authentication bypass with Sign In With Apple allowing unauthenticated users to recover an authentication cookie with only an email address...

10CVSS8.6AI score0.03373EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/03/18 2:57 p.m.24 views

CVE-2021-24148 MStore API < 3.2.0 - Authentication Bypass With Sign In With Apple

A business logic issue in the MStore API WordPress plugin, versions before 3.2.0, had an authentication bypass with Sign In With Apple allowing unauthenticated users to recover an authentication cookie with only an email address...

9AI score0.03373EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/03/18 12:0 a.m.6 views

Wordpress MStore API 授权问题漏洞

Wordpress MStore API is Wordpress open source an application plugin . Provides a configuration for Mstore, FluxStore mobile devices and support RestAPI to connect to the application features . MStore API WordPress plugin version 3.2.0 before the existence of a security vulnerability that can be...

10CVSS5.7AI score0.03373EPSS
Exploits1References2
WPVulnDB
WPVulnDB
added 2021/02/02 12:0 a.m.34 views

MStore API < 3.2.0 - Authentication Bypass With Sign In With Apple

The plugin had an authentication bypass with Sign In With Apple allowing unauthenticated users to recover an authentication cookie with only an email address. PoC The plugin must have a valid purchase code for the request to work curl -X GET --header 'Content-Type: application/json' --header...

2.3AI score0.03373EPSS
Exploits1References2Affected Software1
0day.today
0day.today
added 2021/01/13 12:0 a.m.49 views

Erlang Cookie - Remote Code Execution Exploit

Exploit Title: Erlang Cookie - Remote Code Execution Exploit Author: 1F98D Original Author: Milton Valencia wetw0rk Software Link: https://www.erlang.org/ Version: N/A Tested on: Debian 9.11 x64 References: https://insinuator.net/2017/10/erlang-distribution-rce-and-a-cookie-bruteforcer/ Erlang...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2021/01/13 12:0 a.m.223 views

Erlang Cookie - Remote Code Execution

Exploit Title: Erlang Cookie - Remote Code Execution Date: 2020-05-04 Exploit Author: 1F98D Original Author: Milton Valencia wetw0rk Software Link: https://www.erlang.org/ Version: N/A Tested on: Debian 9.11 x64 References:...

7.4AI score
Exploits0
CNNVD
CNNVD
added 2020/11/26 12:0 a.m.8 views

Fujitsu Eternus Storage DX200 S4 Authorization Issues Vulnerability

The Fujitsu Fujitsu Eternus Storage DX200 S4 is a storage appliance for enterprise environments that provides storage support for server virtualization, email, databases, business applications, and centralized file services from Fujitsu Japan. The storage device features thin provisioning,...

10CVSS7.3AI score0.0442EPSS
Exploits2References6
Hacker One
Hacker One
added 2020/06/11 3:30 a.m.133 views

h1-ctf: [H1-2006] CTF Writeup

H1-2006 CTF Writeup I am fairly new to CTFs - this is just my second CTF after H1-415 CTF, at which I didn't get far at all. I think the most valuable thing I can do for anyone who comes across this writeup, is to describe exactly what I was thinking at each step along the way, including all my...

7AI score
Exploits0
OSV
OSV
added 2020/06/10 6:15 p.m.4 views

CVE-2020-2033

When the pre-logon feature is enabled, a missing certification validation in Palo Alto Networks GlobalProtect app can disclose the pre-logon authentication cookie to a man-in-the-middle attacker on the same local area network segment with the ability to manipulate ARP or to conduct ARP spoofing...

5.3CVSS6AI score0.00761EPSS
Exploits0References1
Cvelist
Cvelist
added 2020/06/10 5:29 p.m.26 views

CVE-2020-2033 GlobalProtect App: Missing certificate validation vulnerability can disclose pre-logon authentication cookie

When the pre-logon feature is enabled, a missing certification validation in Palo Alto Networks GlobalProtect app can disclose the pre-logon authentication cookie to a man-in-the-middle attacker on the same local area network segment with the ability to manipulate ARP or to conduct ARP spoofing...

5.3CVSS5.1AI score0.00761EPSS
Exploits0References1
NVD
NVD
added 2020/03/13 7:15 p.m.15 views

CVE-2019-13172

Some Xerox printers such as the Phaser 3320 V53.006.16.000 were affected by a buffer overflow vulnerability in the Authentication Cookie of the web application that would allow an attacker to execute arbitrary code on the device...

10CVSS9.9AI score0.03016EPSS
Exploits0References2
OSV
OSV
added 2020/03/13 7:15 p.m.2 views

CVE-2019-13172

Some Xerox printers such as the Phaser 3320 V53.006.16.000 were affected by a buffer overflow vulnerability in the Authentication Cookie of the web application that would allow an attacker to execute arbitrary code on the device...

9.8CVSS7.9AI score0.03016EPSS
Exploits0References2
Prion
Prion
added 2020/03/13 7:15 p.m.16 views

Buffer overflow

Some Xerox printers such as the Phaser 3320 V53.006.16.000 were affected by a buffer overflow vulnerability in the Authentication Cookie of the web application that would allow an attacker to execute arbitrary code on the device...

10CVSS9.8AI score0.03016EPSS
Exploits0References2Affected Software1
ATTACKERKB
ATTACKERKB
added 2020/03/13 7:15 p.m.2 views

CVE-2019-13172

Some Xerox printers such as the Phaser 3320 V53.006.16.000 were affected by a buffer overflow vulnerability in the Authentication Cookie of the web application that would allow an attacker to execute arbitrary code on the device...

10CVSS6.6AI score0.03016EPSS
Exploits0References5
Rows per page
Query Builder