EUVD-2026-31698

A vulnerability was determined in Tiandy Easy7 Integrated Management Platform 7.17.0. This issue affects some unknown processing of the file /rest/user/updateUserPassword of the component API Endpoint. Executing a manipulation can lead to weak password recovery. The attack can be executed remotel...

CVE-2026-9466 Tiandy Easy7 Integrated Management Platform API Endpoint updateUserPassword password recovery

A vulnerability was determined in Tiandy Easy7 Integrated Management Platform 7.17.0. This issue affects some unknown processing of the file /rest/user/updateUserPassword of the component API Endpoint. Executing a manipulation can lead to weak password recovery. The attack can be executed remotel...

PT-2026-43080

A vulnerability was determined in Tiandy Easy7 Integrated Management Platform 7.17.0. This issue affects some unknown processing of the file /rest/user/updateUserPassword of the component API Endpoint. Executing a manipulation can lead to weak password recovery. The attack can be executed remotel...

CVE-2026-7554

CVE-2026-7554 affects D-Link M60 firmware up to 1.20B02. The issue involves an unknown functionality in /usr/bin/httpd, which enables weak password recovery. It can be exploited remotely with high attack complexity, and public disclosures indicate the exploit may be used. The CVSS indications in ...

CVE-2026-2564 Intelbras VIP 3260 Z IA OutsideCmd password recovery

A security flaw has been discovered in Intelbras VIP 3260 Z IA 2.840.00IB005.0.T. Affected by this vulnerability is an unknown functionality of the file /OutsideCmd. The manipulation results in weak password recovery. It is possible to launch the attack remotely. Attacks of this nature are highly...

CVE-2025-10322

A vulnerability has been found in Wavlink WL-WN578W2 221110. The affected element is an unknown function of the file /sysinit.html. The manipulation of the argument newpass/confpass leads to weak password recovery. The attack is possible to be carried out remotely. The exploit has been disclosed ...

CVE-2025-10322 Wavlink WL-WN578W2 sysinit.html password recovery

A vulnerability has been found in Wavlink WL-WN578W2 221110. The affected element is an unknown function of the file /sysinit.html. The manipulation of the argument newpass/confpass leads to weak password recovery. The attack is possible to be carried out remotely. The exploit has been disclosed ...

PT-2024-15370 · Unknown · Huiran Host Reseller System

Name of the Vulnerable Software and Affected Versions: HuiRan Host Reseller System versions up to 2.0.0 Description: A vulnerability has been found in the HuiRan Host Reseller System, affecting an unknown function of the file /user/index/findpass?do=4 of the component HTTP POST Request Handler...