ADB Explorer 安全漏洞

ADB Explorer is a ADB user interface developed by Alex B as an individual developer. Versions of ADB Explorer prior to 0.9.26020 contain security vulnerabilities. These vulnerabilities stem from the lack of verification of the integrity or authenticity of the ADB binary path before execution, whi...

CVE-2026-25810 PlaciPy is Missing Object-Level Authorization in student.submission.routes.ts

PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the backend/src/routes/student.submission.routes.ts verify authentication but fails to enforce object-level authorization ownership checks...

PT-2026-7156

PlaciPy is a placement management system designed for educational institutions. In version 1.0.0, the backend/src/routes/student.submission.routes.ts verify authentication but fails to enforce object-level authorization ownership checks...

CVE-2025-10753

CVE-2025-10753 affects the WordPress plugin WordPress OAuth Single Sign On – SSO (OAuth Client). All versions up to 6.26.14 are vulnerable due to missing capability checks and authentication verification on the OAuth redirect functionality accessible via the oauthredirect option parameter, allowi...

EUVD-2008-0401

Malware in sbrugna...

EUVD-2021-21738

Malware in sbrugna...

CVE-2022-32251

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.1. There is a missing authentication verification for a resource used to change the roles and permissions of a user. This could allow an attacker to change the permissions of any user and gain the privileges of an...

RADIUS protocol susceptible to forgery attacks.

Overview A vulnerability in the RADIUS protocol allows an attacker allows an attacker to forge an authentication response in cases where a Message-Authenticator attribute is not required or enforced. This vulnerability results from a cryptographically insecure integrity check when validating...

CVE-2024-37368

Summary (CVE-2024-37368) Rockwell Automation FactoryTalk View SE is affected by an improper authentication vulnerability that allows a remote user with FTView to send a packet from a remote system to view an HMI project. Affected product: FactoryTalk View SE, version v11.0 (confirmed by ICSA advi...

CVE-2024-37367

Rockwell Automation FactoryTalk View SE is affected (v12.0). The vulnerability is an improper authentication issue (CWE-287) that could allow a remote attacker to have a user view an HMI project by sending a packet to the server. Connected advisories confirm affected product and remediation path:...

CVE-2024-2450

Mattermost versions 8.1.x before 8.1.10, 9.2.x before 9.2.6, 9.3.x before 9.3.2, and 9.4.x before 9.4.3 fail to correctly verify account ownership when switching from email to SAML authentication, allowing an authenticated attacker to take over other user accounts via a crafted switch request und...

PT-2023-4949

Name of the Vulnerable Software and Affected Versions Certifi versions prior to 2023.07.22 Description The issue is related to the recognition of "e-Tugra" root certificates by Certifi, a collection of Root Certificates for validating SSL certificates. e-Tugra's root certificates were subject to ...

CVE-2022-32251

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.1. There is a missing authentication verification for a resource used to change the roles and permissions of a user. This could allow an attacker to change the permissions of any user and gain the privileges of an...

CVE-2019-13336

The dbell Wi-Fi Smart Video Doorbell DB01-S Gen 1 allows remote attackers to launch commands with no authentication verification via TCP port 81, because the loginuse and loginpass parameters to openlock.cgi can have arbitrary values. NOTE: the vendor's position is that this product reached end o...

Configure "Authentication Verification Order" Different to the Order Prompted on Logon Page Using NetScaler nFactor

This article describes how to configure "authentication verification order" different to the order prompted on logon page Using NetScaler nFactor. Background The following is the authentication field prompt order of the NetScaler Gateway logon page: 1. Login 2. Domain password 3. One-time passwor...

Microsoft Windows Authentication Verification Remote Code Execution Vulnerability (981210)

This host is missing a critical security update according to Microsoft Bulletin MS10-019. OpenVAS Vulnerability Test $Id: secpodms10-019.nasl 5934 2017-04-11 12:28:28Z antu123 $ Microsoft Windows Authentication Verification Remote Code Execution Vulnerability 981210 Authors: Veerendra G Updated B...

Telepark.wiki Multiple Vulnerabilities

Telepark.wiki is prone to multiple vulnerabilities. SPDX-FileCopyrightText: 2009 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Design/Logic Flaw

SpeedBit Video Acceleration before 2.2.1.8 does not properly verify the authenticity of updates, which allows man-in-the-middle attackers to execute arbitrary code via a Trojan horse update, as demonstrated by evilgrade and DNS cache poisoning...

xp Chinese version through the Microsoft validation Update Patch method summary-vulnerability warning-the black bar safety net

xp Chinese version through the Microsoft validation Update Patch method summary Golden State 2 0 0 6. 1. 1 4 System xp English version, the personal user, sp1,sp2 can be. Objective 1: break through Microsoft's validation, to be able to update the system patch. Purpose 2: lunar 1 and 2. 2 4 is the...