Lucene search
+L

4 matches found

EUVD
EUVD
added 2025/12/02 3:30 p.m.5 views

EUVD-2025-200246

User Enumeration Vulnerability in TCMAN GIM v11 version 20250304. This vulnerability allows an unauthenticated attacker to determine whether a user exists on the system. The vulnerability is exploitable through the 'pda:username' parameter with 'soapaction GetLastDatePasswordChange' in...

6.9CVSS6.3AI score0.00266EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/12/02 12:0 a.m.10 views

PT-2025-48683

User Enumeration Vulnerability in TCMAN GIM v11 version 20250304. This vulnerability allows an unauthenticated attacker to determine whether a user exists on the system. The vulnerability is exploitable through the 'pda:username' parameter with 'soapaction GetLastDatePasswordChange' in...

6.9CVSS6.8AI score0.00266EPSS
Exploits0References2
OSV
OSV
added 2025/05/06 11:15 a.m.5 views

CVE-2025-40622

SQL injection in TCMAN's GIM v11. This vulnerability allows an unauthenticated attacker to inject an SQL statement to obtain, update and delete all information in the database. This vulnerability was found in each of the following parameters according to the vulnerability identifier ‘username’...

9.8CVSS5.8AI score0.00361EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2010/03/18 12:0 a.m.17 views

Get User without Password and User which have an PW and days since last Pasword change

This plugin uses ssh to get User without Password and User which have an PW and days since last Pasword change. If the testuser have no access to /etc/shadow an KB entry will set. OpenVAS Vulnerability Test $Id: GSHBSSHpasswords.nasl 7279 2017-09-26 13:40:36Z cfischer $ Get User without Password...

7.2AI score
Exploits0
Rows per page
Query Builder