Lucene search
K

88 matches found

HackRead
HackRead
added 2025/08/14 5:24 p.m.4 views

Netflix Job Phishing Scam Steals Facebook Login Data

Beware of fake Netflix job offers! A new phishing campaign is targeting job seekers, using fraudulent interviews to…...

7.4AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 3:2 a.m.4 views

CVE-2023-1897

Atlas Copco Power Focus 6000 web server does not sanitize the login information stored by the authenticated user’s browser, which could allow an attacker with access to the user’s computer to gain credential information of the controller...

9.4CVSS6.6AI score0.00341EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:22 p.m.5 views

CVE-2022-45611

An issue was discovered in Fresenius Kabi PharmaHelp 5.1.759.0 allows attackers to gain escalated privileges via via capture of user login information...

9.8CVSS7.2AI score0.00942EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:53 p.m.6 views

CVE-2021-37036

There is an information leakage vulnerability in FusionCompute 6.5.1, eCNS280TD V100R005C00 and V100R005C10. Due to the improperly storage of specific information in the log file, the attacker can obtain the information when a user logs in to the device. Successful exploit may cause the informati...

5.5CVSS6.1AI score0.00166EPSS
Exploits0References1
OSV
OSV
added 2025/05/16 7:15 a.m.6 views

CVE-2025-4753

A vulnerability was found in D-Link DI-7003GV2 24.04.18D1 R68125 and classified as problematic. Affected by this issue is some unknown functionality of the file /login.data. The manipulation leads to information disclosure. The attack may be launched remotely. The exploit has been disclosed to th...

6.9CVSS4.8AI score0.00916EPSS
Exploits1References5
BDU FSTEC
BDU FSTEC
added 2025/02/26 12:0 a.m.8 views

The vulnerability of Tenda W18E router microprogramming software, related to the use of strictly encrypted login data, allows a intruder to gain unauthorized access to the control console.

The vulnerability of Tenda W18E router microprogramming software is related to the use of strictly encrypted account data. Exploiting this vulnerability can allow an attacker operating remotely to gain unauthorized access to the control console with administrator privileges...

8.8CVSS5.5AI score0.00533EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/09/05 12:0 a.m.7 views

Trusted Firmware-M 安全漏洞

Linaro Trusted Firmware-M Tf-M is a reference implementation of the Platform Security Architecture Psa IoT security framework from Linaro, UK. A security vulnerability exists in Trusted Firmware-M version 2.0.0 and prior versions, which stems from a lack of parameter validation in the logging...

4.7CVSS6.6AI score0.00293EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2023/08/22 7:16 p.m.3 views

CVE-2022-45611

An issue was discovered in Fresenius Kabi PharmaHelp 5.1.759.0 allows attackers to gain escalated privileges via via capture of user login information...

9.8CVSS7.4AI score0.00942EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2023/08/22 12:0 a.m.6 views

PT-2023-14719 · Fresenius Kabi · Fresenius Kabi Pharmahelp

Name of the Vulnerable Software and Affected Versions: Fresenius Kabi PharmaHelp version 5.1.759.0 Description: An issue was discovered that allows attackers to gain escalated privileges via capture of user login information. Recommendations: For Fresenius Kabi PharmaHelp version 5.1.759.0,...

9.8CVSS9.5AI score0.00942EPSS
Exploits0References6
CNNVD
CNNVD
added 2023/08/22 12:0 a.m.6 views

Fresenius Kabi PharmaHelp 安全漏洞

Fresenius Kabi PharmaHelp is a medical device from the German company Fresenius Kabi. A security vulnerability exists in Fresenius Kabi PharmaHelp version 5.1.759.0, which originated from a vulnerability that allows an attacker to gain escalated privileges by capturing user login information...

9.8CVSS8.4AI score0.00942EPSS
Exploits0References2
BDU FSTEC
BDU FSTEC
added 2023/08/11 12:0 a.m.6 views

The vulnerability of the web server of the microprogramming software for the processor module control units of Siemens SICAM CP-8031 and CP-8050 allows a hacker to increase their privileges.

The vulnerability of web servers with microprogramming software and Siemens SICAM CP-8031/CP-8050 processor module controllers is related to the use of rigidly encrypted login data. Exploiting this vulnerability can allow attackers to increase their privileges...

7.2CVSS6.5AI score0.00364EPSS
Exploits1References5
OSV
OSV
added 2023/07/11 10:15 a.m.2 views

CVE-2022-31810

A vulnerability has been identified in SiPass integrated All versions V2.90.3.8. Affected server applications improperly check the size of data packets received for the configuration client login, causing a stack-based buffer overflow. This could allow an unauthenticated remote attacker to crash...

7.5CVSS6.1AI score0.00879EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/06/27 12:0 a.m.9 views

The vulnerability of the monitoring software for the status and functions of Advantech R-SeeNet routers lies in the possibility of using strictly encrypted login data, which allows a hacker to gain increased privileges.

The vulnerability of the monitoring software for the status and functions of Advantech R-SeeNet routers lies in the possibility of using strictly encrypted login data. Exploiting this vulnerability could allow a malicious actor to gain increased privileges...

10CVSS7.7AI score0.00668EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2023/06/22 11:15 a.m.4 views

CVE-2023-33387

A reflected cross-site scripting XSS vulnerability in DATEV eG Personal-Management System Comfort/Comfort Plus v15.1.0 to v16.1.1 P4 allows attackers to steal targeted users' login data by sending a crafted link...

6.1CVSS6.3AI score0.00513EPSS
Exploits0References3
NVD
NVD
added 2023/06/22 11:15 a.m.15 views

CVE-2023-33387

A reflected cross-site scripting XSS vulnerability in DATEV eG Personal-Management System Comfort/Comfort Plus v15.1.0 to v16.1.1 P4 allows attackers to steal targeted users' login data by sending a crafted link...

6.1CVSS5.9AI score0.00513EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2023/06/22 11:15 a.m.4 views

CVE-2023-33387

A reflected cross-site scripting XSS vulnerability in DATEV eG Personal-Management System Comfort/Comfort Plus v15.1.0 to v16.1.1 P4 allows attackers to steal targeted users' login data by sending a crafted link...

6.1CVSS5.6AI score0.00513EPSS
Exploits0References4
Prion
Prion
added 2023/06/22 11:15 a.m.15 views

Cross site scripting

A reflected cross-site scripting XSS vulnerability in DATEV eG Personal-Management System Comfort/Comfort Plus v15.1.0 to v16.1.1 P4 allows attackers to steal targeted users' login data by sending a crafted link...

5.8CVSS5.8AI score0.00513EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2023/06/22 12:0 a.m.3 views

DATEV eG Personal-Management System 跨站脚本漏洞

DATEV eG Personal-Management System is a personnel management system from DATEV, Inc. A security vulnerability exists in DATEV eG Personal-Management System Comfort/Comfort Plus versions v15.1.0 through v16.1.1. An attacker could exploit the vulnerability by sending a specially crafted link to...

6.1CVSS6.3AI score0.00513EPSS
Exploits0References4
Vulnrichment
Vulnrichment
added 2023/06/22 12:0 a.m.7 views

CVE-2023-33387

A reflected cross-site scripting XSS vulnerability in DATEV eG Personal-Management System Comfort/Comfort Plus v15.1.0 to v16.1.1 P4 allows attackers to steal targeted users' login data by sending a crafted link...

5.7AI score0.00513EPSS
Exploits0References3
Cvelist
Cvelist
added 2023/06/22 12:0 a.m.22 views

CVE-2023-33387

A reflected cross-site scripting XSS vulnerability in DATEV eG Personal-Management System Comfort/Comfort Plus v15.1.0 to v16.1.1 P4 allows attackers to steal targeted users' login data by sending a crafted link...

6AI score0.00513EPSS
Exploits0References3
Rows per page
Query Builder