Lucene search
K

13 matches found

Positive Technologies
Positive Technologies
added 2025/11/25 12:0 a.m.7 views

PT-2025-48047

SiRcom SMART Alert SiSA allows unauthorized access to backend APIs. This allows an unauthenticated attacker to bypass the login screen using browser developer tools, gaining access to restricted parts of the application...

8.8CVSS7AI score0.00306EPSS
Exploits0References3
CVE
CVE
added 2024/09/27 3:18 p.m.86 views

CVE-2024-47070

CVE-2024-47070 affects authentik (open-source identity provider) versions prior to 2024.8.3 and 2024.6.5. An authentication bypass exists when an attacker-supplied X-Forwarded-For header contains an unparsable value (e.g., a), which can bypass the password stage due to a policy binding flaw and a...

9CVSS9.2AI score0.00568EPSS
Exploits0References3Affected Software1
Prion
Prion
added 2023/05/02 8:15 p.m.15 views

Authentication flaw

An issue in the time-based authentication mechanism of Aigital Aigital Wireless-N Repeater MiniRouter v0.131229 allows attackers to bypass login by connecting to the web app after a successful attempt by a legitimate user...

5CVSS7.7AI score0.14902EPSS
Exploits1References2Affected Software1
NVD
NVD
added 2022/06/07 7:15 p.m.13 views

CVE-2022-30749

Improper access control vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to add arbitrary smart devices by bypassing login activity...

7.8CVSS0.0018EPSS
Exploits0References1
Prion
Prion
added 2022/06/07 7:15 p.m.21 views

Improper access control

Improper access control vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to add arbitrary smart devices by bypassing login activity...

4.6CVSS7.5AI score0.0018EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2022/06/07 6:21 p.m.16 views

CVE-2022-30749

Improper access control vulnerability in Smart Things prior to 1.7.85.25 allows local attackers to add arbitrary smart devices by bypassing login activity...

3.3CVSS7.7AI score0.0018EPSS
Exploits0References1
Prion
Prion
added 2021/10/28 7:15 p.m.16 views

Design/Logic Flaw

This issue was addressed with improved checks. This issue is fixed in macOS Monterey 12.0.1. A person with access to a host Mac may be able to bypass the Login Window in Remote Desktop for a locked instance of macOS...

2.1CVSS6.3AI score0.00238EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2021/09/08 2:29 p.m.22 views

CVE-2021-30702

A logic issue was addressed with improved state management. This issue is fixed in macOS Big Sur 11.4, Security Update 2021-003 Catalina, Security Update 2021-004 Mojave. A person with physical access to a Mac may be able to bypass Login Window...

5.4AI score0.00298EPSS
Exploits0References3
Kitploit
Kitploit
added 2019/04/03 11:43 a.m.2027 views

Instainsane - Multi-threaded Instagram Brute Forcer

Instainsane is a Shell Script to perform multi-threaded brute force attack against Instagram, this script can bypass login limiting and it can test infinite number of passwords with a rate of about 1000 passwords/min with 100 attemps at once. Legal disclaimer: Usage of InstaInsane for attacking...

7.7AI score
Exploits0References1
NVD
NVD
added 2018/10/29 12:29 p.m.18 views

CVE-2018-18703

PhpTpoint Mailing Server Using File Handling 1.0 suffers from multiple Arbitrary File Read vulnerabilities in different sections that allow an attacker to read sensitive files on the system via directory traversal, bypassing the login page, as demonstrated by the Mailserverfilesystem/home.php...

7.5CVSS7.6AI score0.0408EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2018/01/12 3:24 p.m.12 views

Intel AMT Loophole Allows Hackers to Gain Control of Some PCs in Under a Minute

Researchers have found a loophole in Intel processors that allow an attacker to bypass logins and place backdoors on laptops, allowing adversaries remote access to laptops. Researchers at F-Secure, that first identified the attack strategy, say the loophole can be exploited in less than one minut...

0.8AI score
Exploits0References6
seebug.org
seebug.org
added 2008/05/19 12:0 a.m.23 views

easyCMS <= 0.4.2 Multiple Remote Vulnerabilities

No description provided by source. --==+================================================================================+==-- --==+ easyCMS = 0.4.2 Multiple Remote Vulnerabilitys +==-- --==+================================================================================+==-- Discovered By: t0pP8u...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2007/01/14 12:0 a.m.16 views

aiocp-bypass.txt

i Product Name: AIOCP - All In One Control Panel i Vulnerable Versions: = 1.3.009 i Bug found by: Coloss i Contact: [email protected] i Date: 9.1.2007 i Spec: AIOCP doesn't check the username posted by the client before using this to check authentication, so SQL Injection is possible Example show...

7.4AI score
Exploits0
Rows per page
Query Builder