Lucene search
K

3831 matches found

RedhatCVE
RedhatCVE
added 2026/05/04 8:21 p.m.9 views

CVE-2026-7579

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS6.6AI score0.00288EPSS
Exploits0References1
OSV
OSV
added 2026/05/01 12:30 p.m.6 views

GHSA-MQ9Q-25HM-G4GP AstrBot Makes Use of Hard-coded Password

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.3CVSS6.6AI score0.00288EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2026/05/01 12:30 p.m.9 views

AstrBot Makes Use of Hard-coded Password

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS6.6AI score0.00288EPSS
Exploits0References8Affected Software1
NVD
NVD
added 2026/05/01 12:16 p.m.6 views

CVE-2026-7579

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS0.00288EPSS
Exploits0References6
EUVD
EUVD
added 2026/05/01 11:30 a.m.6 views

EUVD-2026-26498

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS6.6AI score0.00288EPSS
Exploits0References6
Cvelist
Cvelist
added 2026/05/01 11:30 a.m.30 views

CVE-2026-7579 AstrBotDevs AstrBot Dashboard auth.py hard-coded credentials

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS0.00288EPSS
Exploits0References6
Vulnrichment
Vulnrichment
added 2026/05/01 11:30 a.m.3 views

CVE-2026-7579 AstrBotDevs AstrBot Dashboard auth.py hard-coded credentials

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS6.6AI score0.00288EPSS
Exploits0References6
CVE
CVE
added 2026/05/01 11:30 a.m.18 views

CVE-2026-7579

The vulnerability CVE-2026-7579 affects AstrBotDevs AstrBot (Dashboard component), specifically in the file astrbot/dashboard/routes/auth.py where hard-coded credentials are manipulated. This issue can be exploited remotely, and exploitation has been disclosed publicly. Affected software version ...

7.5CVSS5.3AI score0.00288EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2026/05/01 11:30 a.m.3 views

CVE-2026-7579

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS5.3AI score0.00288EPSS
Exploits0References6Affected Software1
Positive Technologies
Positive Technologies
added 2026/05/01 12:0 a.m.11 views

PT-2026-36319

A security vulnerability has been detected in AstrBotDevs AstrBot up to 4.16.0. This issue affects some unknown processing of the file astrbot/dashboard/routes/auth.py of the component Dashboard. The manipulation leads to hard-coded credentials. It is possible to initiate the attack remotely. The...

7.5CVSS6.6AI score0.00288EPSS
Exploits0References7
NVD
NVD
added 2026/04/28 12:16 a.m.4 views

CVE-2026-27785

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS0.00224EPSS
Exploits0References3
EUVD
EUVD
added 2026/04/27 11:38 p.m.7 views

EUVD-2026-25935

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS5.1AI score0.00224EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/04/27 11:38 p.m.4 views

CVE-2026-27785

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS5.2AI score0.00224EPSS
Exploits0References4
CVE
CVE
added 2026/04/27 11:38 p.m.15 views

CVE-2026-27785

CVE-2026-27785 affects specific Milesight AIOT camera firmware versions that contain hard-coded credentials. The vulnerability arises from credentials embedded in the firmware, enabling adjacent attackers with low complexity and no privileges required to access confidentiality, integrity, and ava...

8.8CVSS5.2AI score0.00224EPSS
Exploits0References3
Cvelist
Cvelist
added 2026/04/27 11:38 p.m.31 views

CVE-2026-27785 Milesight Cameras Use of Hard-coded Credentials

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS0.00224EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/04/27 12:0 a.m.11 views

PT-2026-35544

Specific firmware versions of Milesight AIOT camera firmware contain hard-coded credentials...

8.8CVSS5.1AI score0.00224EPSS
Exploits0References4
CVE
CVE
added 2026/04/23 11:50 p.m.12 views

CVE-2026-35503

SenseLive X3050 vulnerable via its web management interface: authentication is performed client-side using hardcoded values in browser-executed scripts, enabling an attacker with access to the login page to retrieve exposed parameters and gain unauthorized administrative access. Base scores are C...

9.8CVSS5.7AI score0.00548EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2026/04/23 11:50 p.m.32 views

CVE-2026-35503 SenseLive X3050 Use of Hard-coded Credentials

A vulnerability in SenseLive X3050’s web management interface allows authentication logic to be performed entirely on the client side, relying on hardcoded values within browser-executed scripts rather than server-side verification. An attacker with access to the login page could retrieve these...

9.8CVSS0.00548EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2026/04/23 11:50 p.m.3 views

CVE-2026-35503 SenseLive X3050 Use of Hard-coded Credentials

A vulnerability in SenseLive X3050’s web management interface allows authentication logic to be performed entirely on the client side, relying on hardcoded values within browser-executed scripts rather than server-side verification. An attacker with access to the login page could retrieve these...

9.8CVSS5.4AI score0.00548EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2026/04/20 7:23 p.m.6 views

CVE-2026-6574

A vulnerability has been found in osuuu LightPicture up to 1.2.2. This issue affects some unknown processing of the file /public/install/lp.sql of the component API Upload Endpoint. Such manipulation of the argument key leads to hard-coded credentials. The attack may be performed from remote. The...

7.5CVSS6.5AI score0.00284EPSS
Exploits0References1
Rows per page
Query Builder