86 matches found
PassWork 安全漏洞
PassWork is a password manager from PassWork. A security vulnerability exists in PassWork version 5.0.9. An attacker exploited the vulnerability to obtain a plaintext master password...
CVE-2022-42955
The CVE-2022-42955 entry concerns PassWork extension 5.0.9 for Chrome/other browsers. The vulnerability allows an attacker to obtain cleartext cached credentials due to the underlying issue described in multiple sources. Affected component is the PassWork extension; root cause details are not ful...
PT-2022-26679 · Passwork · Passwork
Name of the Vulnerable Software and Affected Versions: PassWork extension version 5.0.9 Description: The issue allows an attacker to obtain cleartext cached credentials. Recommendations: For PassWork extension version 5.0.9, update to a newer version that contains a fix for this issue...
PT-2022-26680 · Passwork · Passwork
Name of the Vulnerable Software and Affected Versions: PassWork extension version 5.0.9 Description: The issue allows an attacker to obtain the cleartext master password. Recommendations: For PassWork extension version 5.0.9, update to a version that fixes this issue to prevent attackers from...
CVE-2022-42956
The PassWork extension for Chrome/other browsers (version 5.0.9) is affected by CVE-2022-42956, allowing an attacker to obtain the cleartext master password. The base CVSS is High (7.5/3.1) with network attack, no user interaction required. Public details in the provided documents do not include ...
CVE-2022-42956
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain the cleartext master password...
The vulnerability of the Passwork password manager lies in the improper restriction on the path name to the restricted catalog. This allows attackers to manipulate the URL parameters in order to gain access to local files and directories on the server.
The vulnerability of the Passwork password manager is related to incorrect restrictions on the path name to the restricted catalog. Exploiting this vulnerability allows a malicious actor, operating remotely, to manipulate URL parameters in order to gain access to local files and directories on th...
The vulnerability of the Passwork password manager, related to the manipulation of cross-site requests, allows attackers to perform CSRF attacks.
The vulnerability of the Passwork password manager is related to the manipulation of cross-site requests. Exploiting this vulnerability allows a malicious actor, operating remotely, to execute a CSRF attack...
The vulnerability of the Passwork password manager, which stems from the lack of protective measures for website structures, allows attackers to carry out XSS attacks.
The vulnerability of Passwork’s password managers exists due to the lack of measures taken to protect the website structure. Exploiting this vulnerability allows a malicious actor to carry out XSS attacks remotely...
The vulnerability of the Passwork password manager, related to incorrect restrictions on the path to the restricted catalog, allows a violator to upload any files into the system.
The vulnerability of the Passwork password manager is related to incorrect restrictions on the path to the restricted catalog. Exploiting this vulnerability allows a malicious actor to upload arbitrary files into the system remotely...
Passwork On-Premise Edition Cross-Site Scripting Vulnerability
Passwork On-Premise Edition is a local password manager for your business from Passwork Finland. cross-site scripting vulnerability exists in versions prior to Passwork On-Premise Edition 4.6.13, no detailed vulnerability details are currently available...
Passwork On-Premise Edition Path Traversal Vulnerability (CNVD-2022-65366)
Passwork On-Premise Edition is a local password manager for your business from Passwork Finland.Passwork On-Premise Edition is vulnerable to path traversal, no detailed vulnerability details are available at this time...
Passwork On-Premise Edition Cross-Site Request Forgery Vulnerability
Passwork On-Premise Edition is a local password manager for your business from Passwork Finland.A cross-site request forgery vulnerability exists in versions prior to Passwork On-Premise Edition 4.6.13, no detailed vulnerability details are currently available...
Passwork On-Premise Edition Path Traversal Vulnerability
Passwork On-Premise Edition is a local password manager for your business from Passwork Finland.A path traversal vulnerability exists in versions prior to Passwork On-Premise Edition 4.6.13, no detailed vulnerability details are currently available...
CVE-2022-25269
Passwork On-Premise Edition before 4.6.13 has multiple XSS issues...
CVE-2022-25268
Passwork On-Premise Edition before 4.6.13 allows CSRF via the groups, password, and history subsystems...
CVE-2022-25266
Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal to read files...
CVE-2022-25269
Passwork On-Premise Edition before 4.6.13 has multiple XSS issues...
CVE-2022-25266
Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal to read files...
CVE-2022-25268
Passwork On-Premise Edition before 4.6.13 allows CSRF via the groups, password, and history subsystems...