11 matches found
CVE-2020-37116
GUnet OpenEclass 1.7.3 includes phpMyAdmin 2.10.0.2 by default, which allows remote logins. Attackers with access to the platform can remotely access phpMyAdmin and, after uploading a shell, view the config.php file to obtain the MySQL password, leading to full database compromise...
EUVD-2006-4297
Malware in sbrugna...
EUVD-2005-2949
Malware in sbrugna...
EUVD-2023-57909
Malicious code in bioql PyPI...
CVE-2025-35042
Airship AI Acropolis includes a default administrative account that uses the same credentials on every installation. Instances of Airship AI that do not change this account password are vulnerable to a remote attacker logging in and gaining the privileges of this account. Fixed in 10.2.35, 11.0.2...
CVE-2025-35970
On multiple products of SEIKO EPSON and FUJIFILM Corporation, the initial administrator password is easy to guess from the information available via SNMP. If the administrator password is not changed from the initial one, a remote attacker with SNMP access can log in to the product with the...
CVE-2025-52983
A UI Discrepancy for Security Feature vulnerability in the UI of Juniper Networks Junos OS on VM Host systems allows a network-based, unauthenticated attacker to access the device. On VM Host Routing Engines RE, even if the configured public key for root has been removed, remote users which are i...
DEBIAN-CVE-2023-5616
In Ubuntu, gnome-control-center did not properly reflect SSH remote login status when the system was configured to use systemd socket activation for openssh-server. This could unknowingly leave the local machine exposed to remote SSH access contrary to expectation of the user...
CVE-2025-22275
iTerm2 3.5.6 through 3.5.10 before 3.5.11 sometimes allows remote attackers to obtain sensitive information from terminal commands by reading the /tmp/framer.txt file. This can occur for certain it2ssh and SSH Integration configurations, during remote logins to hosts that have a common Python...
PT-2024-1489 · Mitsubishi · Melsec Ws Series Ws0-Geth00200
Name of the Vulnerable Software and Affected Versions: MELSEC WS Series WS0-GETH00200 all serial numbers Description: The issue is related to an authentication bypass vulnerability in the MELSEC WS Series WS0-GETH00200, allowing a remote unauthenticated attacker to bypass the authentication proce...
Backdoor Vulnerability in UDP Port 39889 on D-Link DWR-932B LTE Router
The D-Link DWR-932B LTE is a wireless router. A backdoor vulnerability exists in UDP port 39889 of the D-Link DWR-932B LTE router. Since the string "HELODBG" can be sent as a hardcoded command to UDP port 39889, an attacker can use the vulnerability to launch a root-privileged Telnet on the route...