Lucene search
+L

82 matches found

OSV
OSV
added 2026/06/24 6:5 p.m.3 views

CVE-2026-53949 Ghost Content API filter bypass reveals private fields

Ghost is a Node.js content management system. From 5.46.1 until 6.21.2, the validation applied to filters on the public API endpoints could be partially bypassed, making it possible to reveal private fields via a brute force attack. If SQLite was used as the database password hashes were fully...

5.3CVSS5.8AI score0.00214EPSS
Exploits0References3
NVD
NVD
added 2026/02/03 6:16 p.m.9 views

CVE-2020-37116

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS0.00415EPSS
Exploits1References4
Cvelist
Cvelist
added 2026/02/03 4:52 p.m.30 views

CVE-2020-37116 GUnet OpenEclass 1.7.3 E-learning platform - phpMyAdmin Remote Access

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS0.00415EPSS
Exploits1References4
EUVD
EUVD
added 2026/02/03 4:52 p.m.8 views

EUVD-2020-30979

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS5.5AI score0.00415EPSS
Exploits1References4
ATTACKERKB
ATTACKERKB
added 2026/02/03 4:52 p.m.5 views

CVE-2020-37116

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS5.5AI score0.00415EPSS
Exploits1References4
Positive Technologies
Positive Technologies
added 2026/02/03 12:0 a.m.8 views

PT-2026-5861

GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...

8.8CVSS5.5AI score0.00415EPSS
Exploits1References5
RedhatCVE
RedhatCVE
added 2026/01/09 11:37 a.m.10 views

CVE-2003-1480

MySQL 3.20 through 4.1.0 uses a weak algorithm for hashed passwords, which makes it easier for attackers to decrypt the password via brute force methods...

4.3CVSS7AI score0.02666EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-1225

Malware in sbrugna...

6.4CVSS6.4AI score0.01164EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-8441

Malware in sbrugna...

5CVSS6.3AI score0.06926EPSS
Exploits2References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.9 views

EUVD-2007-2758

Malware in sbrugna...

7.2CVSS6.1AI score0.00334EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2011-3160

Malware in sbrugna...

2.1CVSS6.1AI score0.00343EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2005-4655

Malware in sbrugna...

5CVSS6.4AI score0.01425EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-1988

Malware in sbrugna...

7.5CVSS7.6AI score0.01422EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2001-1236

Malware in sbrugna...

4.6CVSS6.4AI score0.00607EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2017-9524

Malware in sbrugna...

5.4CVSS5.5AI score0.00531EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-2415

Malicious code in bioql PyPI...

7.8CVSS7.7AI score0.00522EPSS
Exploits1References4
RedhatCVE
RedhatCVE
added 2025/05/22 5:4 a.m.8 views

CVE-2017-18408

cPanel before 67.9999.103 allows stored XSS in WHM MySQL Password Change interfaces SEC-282...

5.4CVSS5.8AI score0.00531EPSS
Exploits0References1
Prion
Prion
added 2024/02/19 12:15 p.m.15 views

Default credentials

Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to perform a brute force attack and easily discover the root password...

3.6CVSS7.2AI score0.00151EPSS
Exploits0References1
BDU FSTEC
BDU FSTEC
added 2023/10/28 12:0 a.m.6 views

The vulnerability in the corporate version of the GitHub Enterprise Server, related to the improper assignment of permissions for files, allows a violator to obtain the MySQL password.

The vulnerability in the corporate version of the GitHub Enterprise Server is related to the improper assignment of permissions for files. Exploiting this vulnerability could allow a hacker to obtain the MySQL password...

8.2CVSS5.5AI score
Exploits0References5Affected Software1
Positive Technologies
Positive Technologies
added 2023/10/24 12:0 a.m.4 views

PT-2023-6495 · Github · Github Enterprise Server

Name of the Vulnerable Software and Affected Versions: GitHub Enterprise Server affected versions not specified Description: The issue is related to incorrect permission assignment for files in the corporate version of GitHub Enterprise Server. This could allow an attacker to obtain the MySQL...

6.5CVSS5.6AI score
Exploits0References8
Rows per page
Query Builder