38 matches found
CVE-2026-12032
CVE-2026-12032 concerns Google Chrome for Android where an incorrect implementation in the Passwords component allowed a remote attacker who compromised the renderer process to bypass site isolation via a crafted HTML page. Affected software is Chrome on Android; the issue is tied to the Password...
PT-2026-48778
Inappropriate implementation in Passwords in Google Chrome on Android prior to 149.0.7827.115 allowed a remote attacker who had compromised the renderer process to bypass site isolation via a crafted HTML page. Chromium security severity: High...
CVE-2026-10937
Inappropriate implementation in Passwords in Google Chrome prior to 149.0.7827.53 allowed a remote attacker to bypass same origin policy via a crafted HTML page. Chromium security severity: High...
EUVD-2018-7629
Malware in sbrugna...
EUVD-2010-5266
Malware in sbrugna...
EUVD-2010-2259
Malware in sbrugna...
EUVD-2022-34272
Malicious code in bioql PyPI...
CVE-2023-33561
Improper input validation of password parameter in PHP Jabbers Time Slots Booking Calendar v 3.3 results in insecure passwords...
CVE-2021-24998
The Simple JWT Login WordPress plugin before 3.3.0 can be used to create new WordPress user accounts with a randomly generated password. The password is generated using the strshuffle PHP function that "does not generate cryptographically secure values, and should not be used for cryptographic...
M-Files Server 安全漏洞
M-Files Server is a server for the M-Files system from M-Files, Inc. A security vulnerability exists in versions of M-Files Server prior to 25.1, which stems from allowing insecure passwords to be set. An attacker could exploit the vulnerability to recover external connector passwords...
CVE-2023-33561
Improper input validation of password parameter in PHP Jabbers Time Slots Booking Calendar v 3.3 results in insecure passwords...
PT-2023-24387 · Phpjabbers · Php Jabbers Time Slots Booking Calendar
Name of the Vulnerable Software and Affected Versions: PHP Jabbers Time Slots Booking Calendar version 3.3 Description: The issue is related to improper input validation of the password parameter, which results in insecure passwords. Recommendations: For version 3.3, ensure proper input validatio...
CVE-2023-33561
Improper input validation of password parameter in PHP Jabbers Time Slots Booking Calendar v 3.3 results in insecure passwords...
IBM Planning Analytics 日志信息泄露漏洞
IBM Planning Analytics is a suite of business planning analytics solutions from International Business Machines IBM. The solution supports automated execution of processes such as business planning, budgeting and analysis. Planning Analytics Cartridge for Cloud Pak for Data version v4.0 suffers...
SUSE CVE-2010-2247
makepasswd 1.10 default settings generate insecure passwords...
Design/Logic Flaw
A vulnerability has been identified in Mendix Forgot Password Appstore module All versions = V3.3.0 V3.5.1, Mendix Forgot Password Appstore module Mendix 7 compatible All versions V3.2.2. Initial passwords are generated in an insecure manner. This could allow an unauthenticated remote attacker to...
Euros Football Fever Nets Dumb Passwords
The European soccer championship a.k.a. the Euros is stoking maximum football fever, which has slopped over into easy-to-crack passwords. Such as, say, “football.” That password is of course easy as pie to crack via a dictionary attack – a type of brute-force attack that involves trying thousands...
Insecure Cryptography
rclone is vulnerable to insecure cryptography. The vulnerability exists due to the use of an insecure random number generator which produces insecure passwords with much less entropy than advertised...
CVE-2019-19093
eSOMS versions 4.0 to 6.0.3 do not enforce password complexity settings, potentially resulting in lower access security due to insecure user passwords...
CVE-2019-19093
eSOMS versions 4.0 to 6.0.3 do not enforce password complexity settings, potentially resulting in lower access security due to insecure user passwords...