EUVD-2023-50862

Malicious code in bioql PyPI...

EUVD-2025-14287

Malicious code in bioql PyPI...

EUVD-2024-39401

Malicious code in bioql PyPI...

EUVD-2025-5317

Malicious code in bioql PyPI...

EUVD-2023-31810

Malicious code in bioql PyPI...

EUVD-2024-0022

Malicious code in bioql PyPI...

PSF Warns of Fake PyPI Login Site Stealing User Credentials

The Python Software Foundation PSF warns developers of phishing emails leading to a fake PyPI login site designed to steal account credentials...

CVE-2025-55584

TOTOLINK A3002R v4.0.0-B20230531.1404 was discovered to contain insecure credentials for the telnet service and root account...

CVE-2025-55584

CVE-2025-55584 affects the TOTOLINK A3002R router (version 4.0.0-B20230531.1404). The issue is insecure credentials for the telnet service and the root account, enabling potential unauthorized remote access via Telnet. Some connected sources also recommend changing default credentials as a mitiga...

CVE-2025-54380 Opencast still publishes global system account credentials

Opencast is a free, open-source platform to support the management of educational audio and video content. Prior to version 17.6, Opencast would incorrectly send the hashed global system account credentials ie: org.opencastproject.security.digest.user and org.opencastproject.security.digest.pass...

Opencast 安全漏洞

Opencast is a live video support software for large-scale automated video capture, management and distribution from the Opencast organization. A security vulnerability exists in Opencast versions prior to 17.6 that stems from incorrectly sending hashed global system account credentials, which cou...

Broadcom Symantec IT Management Suite 安全漏洞

Broadcom Symantec IT Management Suite is a software for managing the configuration of remediation applications and operating systems from Broadcom Corporation USA. A security vulnerability exists in Broadcom Symantec IT Management Suite that originates from account connection credentials that can...

CVE-2025-34057

An information disclosure vulnerability exists in Ruijie NBR series routers known to affect NBR2000G, NBR1300G, and NBR1000 models via the /WEBVMS/LEVEL15/ endpoint. By crafting a specific POST request with modified Cookie headers and specially formatted parameters, an unauthenticated attacker ca...

CVE-2023-28085

An HPE OneView Global Dashboard OVGD appliance dump may expose OVGD user account credentials...

CVE-2020-15380

Brocade SANnav before version 2.1.1 logs account credentials at the ‘trace’ logging level...

CVE-2019-14299

Ricoh SP C250DN 1.05 devices have an Authentication Method Vulnerable to Brute Force Attacks. Some Ricoh printers did not implement account lockout. Therefore, it was possible to obtain the local account credentials by brute force...

CVE-2025-46746

An administrator could discover another account's credentials...

CVE-2025-46739

An unauthenticated user could discover account credentials via a brute-force attack without rate limiting...

CVE-2025-46746 Error Message Contains Sensitive Information

An administrator could discover another account's credentials...

CVE-2025-46746

CVE-2025-46746 describes an vulnerability where an administrator could discover another account’s credentials. Connected sources tie this to Schweitzer Engineering Laboratories products (e.g., SEL-5033 acSELerator RTAC Software, SEL-5702, SEL-5035; PT-2025-20718 references SEL Blueframe OS; CNNVD...