CVE-2026-1772

CVE-2026-1772 concerns the RTU500 web interface, where an unprivileged user can read user management information. The vulnerability does not require UI access and can be exploited via browser developer tools, with no user interaction and network-based access. The CVSS 4.0 vector indicates: AV:N/A...

PT-2026-21676

Name of the Vulnerable Software and Affected Versions RTU500 affected versions not specified Description An unprivileged user can read user management information through the RTU500 web interface. Accessing this information requires tools like browser development utilities and does not occur...

CVE-2025-13483

SiRcom SMART Alert SiSA allows unauthorized access to backend APIs. This allows an unauthenticated attacker to bypass the login screen using browser developer tools, gaining access to restricted parts of the application...

CVE-2025-13483

SiRcom SMART Alert SiSA allows unauthorized access to backend APIs. This allows an unauthenticated attacker to bypass the login screen using browser developer tools, gaining access to restricted parts of the application...

CVE-2025-62362 Name and e-mail of employee that has done a publication is discoverable in gpp-burgerportaal

gpp-burgerportaal is a Dutch government citizen portal application. In versions before 2.0.3, 3.0.2, and 4.0.1, the name and email address of employees who publish content are exposed in network responses and can be discovered by viewing the browser's developer tools network tab. This information...

EUVD-2024-48206

Malicious code in bioql PyPI...

CVE-2024-7259

The CVE-2024-7259 entry covers a vulnerability in oVirt-engine where an administrator (including ReadOnlyAdmin) can view provider credentials in cleartext via browser developer tools. Affected product: oVirt-engine (as described in CVE context); root cause: exposure of provider passwords via the ...

CVE-2024-7259 Ovirt-engine: potential exposure of cleartext provider passwords via web ui

A flaw was found in oVirt. A user with administrator privileges, including users with the ReadOnlyAdmin permission, may be able to use browser developer tools to view Provider passwords in cleartext...

oVirt Node 安全漏洞

oVirt Node is an open source virtualization management platform. A security vulnerability exists in oVirt Node that stems from the fact that a user with administrator privileges may be able to view provider passwords in plaintext using browser developer tools...

PT-2024-38216 · Ovirt · Ovirt

Name of the Vulnerable Software and Affected Versions: oVirt affected versions not specified Description: A flaw was found in oVirt, allowing a user with administrator privileges, including those with the ReadOnlyAdmin permission, to potentially view Provider passwords in cleartext using browser...

The vulnerabilities of Google Chrome and Microsoft Edge browser developers allow attackers to execute arbitrary code.

The vulnerability of browser developer tools such as Google Chrome and Microsoft Edge is related to their use after being released. Exploiting this vulnerability could allow a malicious actor to execute arbitrary code...