Lucene search
K

6 matches found

Positive Technologies
Positive Technologies
added 2025/11/18 12:0 a.m.6 views

PT-2025-47308

Name of the Vulnerable Software and Affected Versions Windu CMS version 4.1 Windu CMS affected versions not specified Description Windu CMS has a flaw that allows attackers to perform Cross-Site Request Forgery CSRF attacks in the user editing functionality. The existing CSRF protection can be...

6.8CVSS6.6AI score0.0015EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2020-9426

Malware in sbrugna...

9.8CVSS9.2AI score0.01184EPSS
Exploits1References2
Snyk
Snyk
added 2025/09/06 4:0 a.m.4 views

Insufficient Session Expiration

Overview Affected versions of this package are vulnerable to Insufficient Session Expiration via insecure session handling in prebuilt workspaces. An attacker can gain unauthorized access to other users' workspaces by reusing unexpired session tokens exposed through...

8.6CVSS7.1AI score0.00349EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/22 4:19 p.m.13 views

CVE-2020-26172

Every login in tangro Business Workflow before 1.18.1 generates the same JWT token, which allows an attacker to reuse the token when a session is active. The JWT token does not contain an expiration timestamp...

6.5CVSS6.8AI score0.00652EPSS
Exploits1
Prion
Prion
added 2020/08/14 8:15 p.m.15 views

Code injection

A token-reuse vulnerability in ZKTeco FaceDepot 7B 1.0.213 and ZKBiosecurity Server 1.0.020190723 allows an attacker to create arbitrary new users, elevate users to administrators, delete users, and download user faces from the database...

7.5CVSS9.2AI score0.01184EPSS
Exploits1References1Affected Software2
CVE
CVE
added 2014/05/14 10:0 a.m.75 views

CVE-2014-1808

CVE-2014-1808 affects Microsoft Office 2013 variants (Gold, SP1, RT, RT SP1). The flaw, described as the Token Reuse Vulnerability, allows remote attackers to obtain sensitive authentication token information when opening a crafted Office document from a web site. Root cause involves improper han...

4.3CVSS8AI score0.10091EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder