Lucene search
K

33 matches found

Vulnrichment
Vulnrichment
added 2026/04/01 5:5 p.m.2 views

CVE-2026-34376 PdfDing: Password-protected share bypass via direct serve endpoint

PdfDing is a selfhosted PDF manager, viewer and editor offering a seamless user experience on multiple devices. Prior to version 1.7.0, an access-control vulnerability allows unauthenticated users to retrieve password-protected shared PDFs by directly calling the file-serving endpoint without...

7.5CVSS5.7AI score0.0037EPSS
Exploits0References4
OSV
OSV
added 2026/02/25 4:0 p.m.6 views

GHSA-8VRH-3PM2-V4V6 FileBrowser Quantum: Password Protection Not Enforced on Shared File Links

Summary When users share password-protected files, the recipient can completely bypass the password and still download the file. Details This happens because the API returns a direct download link in the details of the share, which is accessible to anyone with JUST THE SHARE LINK, even without th...

7.1CVSS5.6AI score0.00307EPSS
Exploits1References6
RedhatCVE
RedhatCVE
added 2025/12/31 9:12 a.m.5 views

CVE-2025-15102

DVP-12SE11T - Password Protection Bypass...

9.8CVSS7AI score0.00273EPSS
Exploits0References1
OSV
OSV
added 2025/12/30 9:15 a.m.5 views

CVE-2025-15102

DVP-12SE11T - Password Protection Bypass...

9.8CVSS5.8AI score0.00273EPSS
Exploits0References1
NVD
NVD
added 2025/12/30 9:15 a.m.6 views

CVE-2025-15102

DVP-12SE11T - Password Protection Bypass...

9.8CVSS0.00273EPSS
Exploits0References1
CVE
CVE
added 2025/12/30 8:48 a.m.11 views

CVE-2025-15102

CVE-2025-15102 impacts Delta Electronics DVP-12SE11T PLC. The vulnerability is a password protection bypass that can be exploited remotely without authentication, potentially allowing unauthorized access and manipulation of PLC functionality. Fixed via firmware updates in late December 2025. Conn...

9.8CVSS6.5AI score0.00273EPSS
Exploits0References1Affected Software1
EUVD
EUVD
added 2025/10/13 12:31 p.m.4 views

EUVD-2025-34063

The WP Private Content Plus through 3.6.2 provides a global content protection feature that requires a password. However, the access control check is based only on the presence of an unprotected client-side cookie. As a result, an unauthenticated attacker can completely bypass the password...

6.6AI score0.00277EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/10/13 9:37 a.m.2 views

CVE-2025-10720 WP Private Content Plus <= 3.6.2 - Password Protection Bypass

The WP Private Content Plus through 3.6.2 provides a global content protection feature that requires a password. However, the access control check is based only on the presence of an unprotected client-side cookie. As a result, an unauthenticated attacker can completely bypass the password...

6.7AI score0.00277EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/13 9:37 a.m.12 views

CVE-2025-10720 WP Private Content Plus <= 3.6.2 - Password Protection Bypass

The WP Private Content Plus through 3.6.2 provides a global content protection feature that requires a password. However, the access control check is based only on the presence of an unprotected client-side cookie. As a result, an unauthenticated attacker can completely bypass the password...

0.00277EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/13 12:0 a.m.5 views

PT-2025-41778

Name of the Vulnerable Software and Affected Versions WP Private Content Plus versions through 3.6.2 Description The software includes a content protection feature requiring a password, but the access control check relies solely on a client-side cookie. An unauthenticated attacker can bypass the...

6.9AI score0.00277EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-1999-1057

Malware in sbrugna...

4.6CVSS6.4AI score0.00451EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2014-8852

Malware in sbrugna...

7.5CVSS6.4AI score0.01319EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2004-2250

Malware in sbrugna...

2.1CVSS6.4AI score0.00333EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-3049

Malware in sbrugna...

7.8CVSS7.6AI score0.00251EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/08/16 9:26 a.m.10 views

CVE-2025-5998

The PPWP – Password Protect Pages WordPress plugin before version 1.9.11 allows to put the site content behind a password authorization, however users with subscriber or greater roles can view content via the REST API...

6.5CVSS7.1AI score0.0029EPSS
Exploits1References1
OSV
OSV
added 2025/07/28 7:57 p.m.1 views

GO-2025-3790 File Browser's password protection of links is bypassable in github.com/filebrowser/filebrowser

File Browser's password protection of links is bypassable in github.com/filebrowser/filebrowser...

4.3CVSS6.3AI score0.00312EPSS
Exploits1References3
CVE
CVE
added 2025/04/28 6:0 a.m.96 views

CVE-2024-13688

CVE-2024-13688 relates to the Admin and Site Enhancements (ASE) WordPress plugin. The issue is a hardcoded password in the Password Protection feature, enabling bypass of protection through a crafted request. Affected versions are

5.3CVSS6.5AI score0.00312EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/04/28 6:0 a.m.19 views

CVE-2024-13688 Admin and Site Enhancements (ASE) < 7.6.10 - Password Protection Bypass

The Admin and Site Enhancements ASE WordPress plugin before 7.6.10 uses a hardcoded password in its Password Protection feature, allowing attacker to bypass the protection offered via a crafted request...

0.00312EPSS
Exploits1References1
CNNVD
CNNVD
added 2021/07/14 12:0 a.m.5 views

Schneider Electric EcoStruxure Control Expert 安全漏洞

Schneider Electric EcoStruxure Control Expert formerly known as Unity Pro is a suite of programming software for Schneider Electric logic controller products from Schneider Electric, France. A security vulnerability exists in various Schneider Electric EcoStruxure Control Expert products that ste...

7.1CVSS7.2AI score0.00217EPSS
Exploits0References3
OSV
OSV
added 2019/12/18 8:15 p.m.2 views

CVE-2019-19690

Trend Micro Mobile Security for Android Consumer versions 10.3.1 and below on Android 8.0+ has an issue in which an attacker could bypass the product's App Password Protection feature...

9.8CVSS7.3AI score0.01458EPSS
Exploits0References1
Rows per page
Query Builder