Filament multi-factor authentication (app) recovery codes can be used multiple times

A flaw in the handling of recovery codes for app-based multi-factor authentication allows the same recovery code to be reused indefinitely. This issue does not affect email-based MFA. It also only applies when recovery codes are enabled. If an attacker gains access to both the user's password and...

GHSA-FJH6-8679-9PCH Flowise does not Prevent Bypass of Password Confirmation - Unverified Password Change

Summary Bypass of Password Confirmation - Unverified Password Change authenticated change without current password An authenticated user is allowed to change their account password without supplying the current password or any additional verification. The application does not verify the actor’s...

CVE-2011-20002

Affected software/hardware: Siemens SIMATIC S7-1200 CPU V1/V2 families (incl. SIPLUS variants). Vulnerability: Capture-replay of engineering software communication that can allow an on-path attacker to replay legitimate commands to the controller. Root cause (from sources): Insecure handling of e...

EUVD-2025-23997

Malicious code in bioql PyPI...

Ensure That a Common User Cannot Use pkexec for Privilege Escalation

The pkexec command enables a common user to have the permissions of the superuser or other users. After the authentication is successful, the common user runs the corresponding program with the permissions of the superuser. The pkexec command provides a convenient way for users to change their...

PT-2025-36258

Name of the Vulnerable Software and Affected Versions: elunez eladmin versions up to 2.7 Description: A flaw exists in elunez eladmin that impacts the updateUserEmail function within the Email Address Handler component. Manipulation of the id/email argument in the /api/users/updateEmail/ API...

Linux Distros Unpatched Vulnerability : CVE-2023-5536

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A feature in LXD LP1829071, affects the default configuration of Ubuntu Server which allows privileged users in the lxd group to escalate their privilege to roo...

Configure a Proper SSH Service Authentication Mode

A proper authentication mode helps ensure user and system data security. Typically, the user/password authentication mode is suitable for human-machine users. In non-interactive login scenarios, the public and private keys are suitable for authentication. In high-risk scenarios, only the public a...

The vulnerability of the Project Name Handler component in navigation and multimedia systems intended for use in terrestrial vehicles, provided by Harman Infotainment, allows for root access via SSH using a USB-to-Ethernet key with a password.

The vulnerability of the Project Name Handler component in navigation and multimedia systems intended for use in terrestrial vehicles, Harman Infotainment, is related to deficiencies in access control. Exploiting this vulnerability could allow an attacker to gain root access via SSH using a...

SUSE CVE-2015-7703

The "pidfile" or "driftfile" directives in NTP ntpd 4.2.x before 4.2.8p4, and 4.3.x before 4.3.77, when ntpd is configured to allow remote configuration, allows remote attackers with an IP address that is allowed to send configuration requests, and with knowledge of the remote configuration...

SUSE CVE-2017-8821

In Tor before 0.2.5.16, 0.2.6 through 0.2.8 before 0.2.8.17, 0.2.9 before 0.2.9.14, 0.3.0 before 0.3.0.13, and 0.3.1 before 0.3.1.9, an attacker can cause a denial of service application hang via crafted PEM input that signifies a public key requiring a password, which triggers an attempt by the...

CVE-2022-0859

McAfee Enterprise ePolicy Orchestrator ePO prior to 5.10 Update 13 allows a local attacker to point an ePO server to an arbitrary SQL server during the restoration of the ePO server. To achieve this the attacker would have to be logged onto the server hosting the ePO server restricted to...

Unspecified Vulnerability in Telegram Desktop (CNVD-2021-38323)

Telegram is an instant messaging mobile application.Telegram Desktop is the desktop version of Telegram. A security vulnerability exists in Telegram Desktop version 2.4.3 and earlier, which stems from a password not being required to be entered when the export key is pressed in the Export Telegra...

Upload command to Startup folder

Added: 01/20/2009 Background Each user's Startup folder on Windows systems contains programs which run at start-up time. This tool attempts to upload a command connection to a user's Startup folder. If successful, the connection will be established the next time the computer starts. Limitations A...

Sudo 1.6.9p18 - Defaults SetEnv Local Privilege Escalation

Sudo 1.6.9p18 - Defaults SetEnv Local Privilege Escalation !/bin/sh Sudo "Defaults setenv" so environ vars are preserved : program.c include include include void init if !geteuid unsetenv"LDPRELOAD"; setgid0; setuid0; execl"/bin/sh","sh","-c","chown 0:0 /tmp/xxxx; /bin/chmod +xs /tmp/xxxx",NULL;...

Flash FTP Server - Directory Traversal

Flash FTP Server - Directory Traversal TestCode: C:\ftp localhost Connected to server. 220 Flash FTP Server v2.1 ready... User server:none: CoolICE 331 Password required for CoolICE. Password: 230 User CoolICE logged in. ftp get /winnt/system.ini 200 Port command successful. 150 Opening data...

Default Password (db2inst) for 'db2inst1' Account

The account 'db2inst1' has the password 'db2inst1'. An attacker may use this to gain further privileges on this system. %NASLMINLEVEL 70300 This script was written by Chris Foster See the Nessus Scripts License for details Changes by Tenable Add globalsettings/suppliedloginsonly scriptexcludekey...

Unpassworded 'hax0r' Account

The account 'hax0r' has no password set. An attacker may use this to gain further privileges on this system. %NASLMINLEVEL 70300 C Tenable Network Security, Inc. account = "hax0r"; include'deprecatednasllevel.inc'; include'compat.inc'; if description scriptid11253; scriptversion"1.36";...

Motorola Vanguard with No Password (telnet check)

This device is a Motorola Vanguard router and has no password set. An attacker can reconfigure this device without providing any authentication. This script was written by Geoff Humes See the Nessus Scripts License for details Changes by Tenable: - Revised plugin title 9/2/09 - Revised plugin tit...