EUVD-2026-22325

A storing passwords in a recoverable format vulnerability in Fortinet FortiSOAR PaaS 7.6.0 through 7.6.4, FortiSOAR PaaS 7.5.0 through 7.5.2, FortiSOAR PaaS 7.4 all versions, FortiSOAR PaaS 7.3 all versions, FortiSOAR on-premise 7.6.0 through 7.6.4, FortiSOAR on-premise 7.5.0 through 7.5.2,...

CVE-2026-22574

CVE-2026-22574 affects Fortinet FortiSOAR PaaS (versions 7.6.0–7.6.4, 7.5.0–7.5.2, 7.4 all, 7.3 all) and FortiSOAR on‑premise (7.6.0–7.6.4, 7.5.0–7.5.2, 7.4 all, 7.3 all). The issue is a vulnerability where passwords are stored in a recoverable format, potentially allowing an authenticated remote...

Cleartext Password Disclosure

Apache Syncope is vulnerable to Cleartext Password Disclosure. The issue arises from use of a hard-coded default AES key when AES-based password storage is enabled, allowing an attacker with access to the internal database to decrypt and recover user passwords...

CVE-2025-34519

Ilevia EVE X1 Server firmware versions ≤ 4.7.18.0.eden contain an insecure hashing algorithm vulnerability. The product stores passwords using the MD5 hash function without applying a per‑password salt. Because MD5 is a fast, unsalted hash, an attacker who obtains the password database can...

EUVD-2015-1149

Malware in sbrugna...

EUVD-2021-15168

Malware in sbrugna...

EUVD-2008-5195

Malware in sbrugna...

EUVD-2017-14777

Malware in sbrugna...

EUVD-2020-21868

Malware in sbrugna...

EUVD-2002-0484

Malware in sbrugna...

EUVD-2020-21870

Malware in sbrugna...

EUVD-2019-18466

Malware in sbrugna...

EUVD-2008-3884

Malware in sbrugna...

EUVD-2022-31405

Malicious code in bioql PyPI...

EUVD-2024-26033

Malicious code in bioql PyPI...

EUVD-2021-30505

Malicious code in bioql PyPI...

EUVD-2021-8862

Malicious code in bioql PyPI...

EUVD-2023-35466

Malicious code in bioql PyPI...

Vasion Print 安全漏洞

Vasion Print is a SaaS-based, cloud-hosted application from Vasion for managing and deploying printers. A security vulnerability exists in the Vasion Print Virtual Appliance Host and Application that stems from the use of unsalted SHA-512 hashes and unsalted SHA-1 hashes to store user passwords,...

CVE-2025-51540

EzGED3 3.5.0 stores user passwords using an insecure hashing scheme: md5md5password. This hashing method is cryptographically weak and allows attackers to perform efficient offline brute-force attacks if password hashes are disclosed. The lack of salting and use of a fast, outdated algorithm make...