Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

3 matches found

OSV
OSVadded 2021/08/11 9:15 p.m.2 views

CVE-2017-16629

In SapphireIMS 40971, it is possible to guess the registered/active usernames of the software from the errors it gives out for each type of user on the Login form. For "Incorrect User" - it gives an error "The application failed to identify the user. Please contact administrator for help." For...

7.5CVSS5.8AI score0.00341EPSS
Exploits0References2
OSV
OSVadded 2021/08/11 9:15 p.m.4 views

CVE-2017-16632

In SapphireIMS 40971, the password in the database is stored in Base64 format...

7.5CVSS5.8AI score0.00148EPSS
Exploits0References2
OSV
OSVadded 2021/08/11 9:15 p.m.3 views

CVE-2017-16630

In SapphireIMS 40971, a guest user can create a local administrator account on any system that has SapphireIMS installed, because of an Insecure Direct Object Reference IDOR in the local user creation function...

8.8CVSS5.8AI score0.00324EPSS
Exploits0References2
Rows per page
Query Builder