Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

569 matches found

0day.today
0day.todayadded 2008/02/14 12:0 a.m.71 views

Philips VOIP841 (Firmware <= 1.0.4.800) Multiple Vulnerabilities

Exploit for hardware platform in category remote exploits ================================================================ Philips VOIP841 Firmware alert"XSS"; HTTP/1.0 d Insecure Storage Skype credentials, web management console passwords, ... /var/jffs2/data/save.dat /tmp/apply.log 0day.today...

7.1AI score
Exploits0
Exploit DB
Exploit DBadded 2008/02/14 12:0 a.m.44 views

Philips VOIP841 Firmware 1.0.4.800 - Multiple Vulnerabilities

.: Philips VOIP841 Multiple Vulnerabilities :. Luca "ikki" Carettoni - [email protected] Systems affected: Philips VOIP841, Firmware Version 1.0.4.50 and 1.0.4.80, Web Server Version 1.5 simple httpd Systems not affected: n/a a Hidden Administration Account web management console...

7.4AI score
Exploits0
Packet Storm
Packet Stormadded 2008/02/14 12:0 a.m.41 views

philipsvoip-multi.txt

Secure Network - Security Research Advisory Vuln name: Philips VOIP841 Multiple Vulnerabilities Systems affected: Philips VOIP841, Firmware Version 1.0.4.50 and 1.0.4.80, Web Server Version 1.5 simple httpd Systems not affected: n/a Severity: High Local/Remote: Remote Vendor URL:...

7.4AI score
Exploits0
Cvelist
Cvelistadded 2007/01/05 11:0 a.m.21 views

CVE-2007-0077

lblog stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database via a direct request for a certain file in admin/db/newFolder/...

6.3AI score0.01592EPSS
Exploits1References6
securityvulns
securityvulnsadded 2006/09/04 12:0 a.m.32 views

[SA21742] microforum &quot;members.dat&quot; Exposure of User Credentials

---------------------------------------------------------------------- Want to work within IT-Security? Secunia is expanding its team of highly skilled security experts. We will help with relocation and obtaining a work permit. Currently the following type of positions are available:...

6.8AI score
Exploits0
securityvulns
securityvulnsadded 2006/04/13 12:0 a.m.33 views

Sybase EAServer information leak

Security credentials are stored insecurely in connection cache...

1.9AI score
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2005/08/16 4:0 a.m.18 views

CVE-2003-1226

BEA WebLogic Server and Express 7.0 and 7.0.0.1 stores certain secrets concerning password encryption insecurely in config.xml, filerealm.properties, and weblogic-rar.xml, which allows local users to learn those secrets and decrypt passwords...

6.4AI score0.00208EPSS
Exploits0References3
CVE
CVEadded 2005/05/19 4:0 a.m.40 views

CVE-2003-1213

MaxWebPortal 1.30 stores its portal database under the web document root with insecure access control, allowing remote retrieval of database/db2000.mdb via a direct request. This causes partial confidentiality impact (CVSS: AV:N/AC:L/Au:N/C:P/I:P/A:P). The CVE entry provides no exploitation detai...

7.5CVSS6.6AI score0.02773EPSS
Exploits1References4Affected Software1
Exploit DB
Exploit DBadded 2000/06/16 12:0 a.m.17 views

Visible Systems Razor 4.1 - Password File (1)

// source: https://www.securityfocus.com/bid/1424/info The Razor Configuration Management program stores passwords in an insecure manner. A local attacker can obtain the Razor passwords, and either seize control of the software and relevant databases or use those passwords to access other users'...

7.4AI score
Exploits0
Rows per page
Query Builder