EUVD-2018-1855

Malware in sbrugna...

CVE-2022-45922

An issue was discovered in OpenText Content Suite Platform 22.1 16.2.19.1803. The request handler for ll.KeepAliveSession sets a valid AdminPwd cookie even when the Web Admin password was not entered. This allows access to endpoints, which require a valid AdminPwd cookie, without knowing the...

RIGOL MSO5000 安全漏洞

The RIGOL MSO5000 is an oscilloscope from China's Puyuan Jingdian RIGOL company. A security vulnerability exists in the RIGOL MSO5000 version 00.01.03.00.03, which originates from changing the administrator password via a zero-length pass0 to the Webcontrol Changepwd.cgi application, i.e., the...

in pheditor/pheditor

Description With your new fix in https://github.com/pheditor/pheditor/commit/69a79e3ba7f4a9f844cf5919c14a953e4a0d1867, it is basically impossible to change the password now because you forgot to add in the CSRF token in the reset password functionality, hence the password cannot be changed from...

Geneko Routers Information Disclosure Vulnerability

Geneko Router version 3.18.21 is vulnerable to an information disclosure vulnerability. SPDX-FileCopyrightText: 2017 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2010-5090

SilverStripe before 2.4.2 allows remote authenticated users to change administrator passwords via vectors related to admin/security...