Lucene search
K

11 matches found

NVD
NVD
added 2025/10/21 3:15 p.m.4 views

CVE-2025-60344

A path traversal directory traversal vulnerability in D-Link DSR series routers allows unauthenticated remote attackers to manipulate input parameters used for file or directory path resolution e.g., via sequences such as “../”. Successful exploitation may allow access to files outside of the...

8.6CVSS0.10268EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/15 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2024-50624

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ispdbservice.cpp in KDE Kmail before 6.2.0 allows man-in-the-middle attackers to trigger use of an attacker-controlled mail server because cleartext HTTP is use...

5.9CVSS7.1AI score0.0025EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/22 8:3 p.m.8 views

CVE-2021-37157

An issue was discovered in OpenGamePanel OGP-Agent-Linux through 2021-08-14. $HOME/OGP/Cfg/Config.pm has the root password in cleartext...

9CVSS7.1AI score0.01311EPSS
Exploits4References1
RedhatCVE
RedhatCVE
added 2025/05/22 12:1 a.m.8 views

CVE-2009-2856

Sun Virtual Desktop Infrastructure VDI 3.0, when anonymous binding is enabled, does not properly handle a client's attempt to establish an authenticated and encrypted connection, which might allow remote attackers to read cleartext VDI configuration-data requests by sniffing LDAP sessions on the...

3.5CVSS6.8AI score0.0132EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/02/15 12:0 a.m.5 views

Netgear ProSAFE FS726TP 安全漏洞

The NETGEAR ProSAFE FS726TP is a smart switch. A security vulnerability exists in the NETGEAR ProSAFE FS726TP that originates when an unspecified endpoint in the switch's web server fails to properly authenticate a user's identity, allowing configuration pages with passwords to be downloaded to t...

7.5CVSS6.5AI score0.00577EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/04/01 8:49 p.m.13 views

CVE-2018-17563

A Malformed Input String to /cgi-bin/api-getlinestatus on Grandstream GXP16xx VoIP 1.0.4.128 phones allows attackers to dump the device's configuration in cleartext...

5.3AI score0.00699EPSS
Exploits0References2
Cvelist
Cvelist
added 2018/04/20 8:0 p.m.24 views

CVE-2014-6111

IBM Tivoli Identity Manager 5.1.x before 5.1.0.15-ISS-TIM-IF0057 and Security Identity Manager 6.0.x before 6.0.0.4-ISS-SIM-IF0001 and 7.0.x before 7.0.0.0-ISS-SIM-IF0003 store encrypted user credentials and the keystore password in cleartext in configuration files, which allows local users to...

7.2AI score0.00351EPSS
Exploits0References2
ICS
ICS
added 2016/09/11 6:0 a.m.62 views

Moxa MiiNePort Session Hijack Vulnerabilities

OVERVIEW Independent researcher Aditya Sood has identified vulnerabilities in Moxa’s MiiNePort. Moxa has produced new firmware editions to mitigate these vulnerabilities. These vulnerabilities could be exploited remotely. AFFECTED PRODUCTS Moxa reports that the vulnerabilities affect the followin...

7.5CVSS7.1AI score0.01633EPSS
Exploits0References10
Packet Storm
Packet Storm
added 2014/03/11 12:0 a.m.62 views

Apple TV Touch Password Disclosure

-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Intrepidus Group Security Advisory http://www.intrepidusgroup.com -=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=- Title: Apple TV Touch Setup Wi-Fi and iTunes Password Disclosure Release Date: 10 March...

2.1CVSS6.7AI score0.00299EPSS
Exploits1
NVD
NVD
added 2008/12/09 12:30 a.m.19 views

CVE-2008-4390

The Cisco Linksys WVC54GC wireless video camera before firmware 1.25 sends cleartext configuration data in response to a Setup Wizard remote-management command, which allows remote attackers to obtain sensitive information such as passwords by sniffing the network...

10CVSS7.3AI score0.03293EPSS
Exploits1References5
Cvelist
Cvelist
added 2003/07/04 4:0 a.m.19 views

CVE-2003-0499

Mantis 0.17.5 and earlier stores its database password in cleartext in a world-readable configuration file, which allows local users to perform unauthorized database operations...

6.3AI score0.00383EPSS
Exploits0References1
Rows per page
Query Builder