Malicious code in credential-python-sdk (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 6c6598ac9c321af3b0526ddceb5ffc6e78d593e0c3e6bdd259b06c0792705cc6 This campaign is built from two parts: 1 packages named like time-check-server, snapshot-photo contain an innocent-looking code that sends "date" to a remote...

CVE-2024-5012

In WhatsUp Gold versions released before 2023.1.3, there is a missing authentication vulnerability in WUGDataAccess.Credentials. This vulnerability allows unauthenticated attackers to disclose Windows Credentials stored in the product Credential Library...

CVE-2024-5012 WhatsUp Gold Missing Authentication GetWindowsCredential Information Disclosure Vulnerability

In WhatsUp Gold versions released before 2023.1.3, there is a missing authentication vulnerability in WUGDataAccess.Credentials. This vulnerability allows unauthenticated attackers to disclose Windows Credentials stored in the product Credential Library...

CVE-2024-5012

Progress WhatsUp Gold

Malicious code in credential-sdk (PyPI)

--- -= Per source details. Do not edit below this line.=-...

PT-2024-33953 · Ipswitch · Whatsup Gold

Name of the Vulnerable Software and Affected Versions: WhatsUp Gold versions prior to 2023.1.3 Description: The issue is related to a missing authentication vulnerability in WUGDataAccess.Credentials. This allows unauthenticated attackers to disclose Windows Credentials stored in the product...

metasploit-xmlrpc-brute NSE Script

Performs brute force password auditing against a Metasploit RPC server using the XMLRPC protocol. Script Arguments passdb, unpwdb.passlimit, unpwdb.timelimit, unpwdb.userlimit, userdb See the documentation for the unpwdb library. creds.service, creds.global See the documentation for the creds...