4 matches found
GHSA-8F47-4RH3-X44M Flowise: Bcrypt Password Hash Exposure
A security flaw has been discovered in FlowiseAI Flowise up to 3.0.12. Affected is the function Login of the file packages/server/src/enterprise/services/account.service.ts of the component API Response Handler. The manipulation results in information disclosure. The attack can be launched...
CVE-2026-4235 itsourcecode Online Enrollment System login.php sql injection
A weakness has been identified in itsourcecode Online Enrollment System 1.0. This issue affects some unknown processing of the file /sms/login.php. This manipulation of the argument useremail causes sql injection. The attack is possible to be carried out remotely. The exploit has been made...
CVE-2017-20204 DBLTek GoIP Telnet Admin Interface Undocumented Backdoor
DBLTek GoIP devices models GoIP 1, 4, 8, 16, and 32 contain an undocumented vendor backdoor in the Telnet administrative interface that allows remote authentication as an undocumented user via a proprietary challenge–response scheme which is fundamentally flawed. Because the challenge response ca...
Vulnerability of Telnet and SSH services on the Android emulator AndyOS, allowing attackers to elevate their privileges to root level.
The vulnerability of Telnet and SSH services in the Android emulator AndyOS is related to authentication flaws. Exploiting this vulnerability can allow a hacker to gain root-level privileges...