CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-14253

Malicious code in bioql PyPI...

3.1CVSS4.1AI score0.00113EPSS

Exploits0References5

OSV•added 2025/09/10 7:0 a.m.•1 views

UBUNTU-CVE-2025-9086

A cookie is set using the secure keyword for https://target 2. curl is redirected to or otherwise made to speak with http://target same hostname, but using clear text HTTP using the same cookie set 3. The same cookie name is set - but with just a slash as path path="/",. Since this site is not...

7.5CVSS6.6AI score0.00275EPSS

Exploits1References4

RedhatCVE•added 2025/08/06 10:13 p.m.•3 views

CVE-2025-8528

A vulnerability classified as problematic has been found in Exrick xboot up to 3.3.4. Affected is an unknown function of the file /xboot/permission/getMenuList. The manipulation leads to cleartext storage of sensitive information in a cookie. It is possible to launch the attack remotely. The...

6.3CVSS3.9AI score0.00136EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 12:31 p.m.•4 views

CVE-2010-4305

Cisco Unified Videoconferencing UVC System 3545, 5110, 5115, and 5230; Unified Videoconferencing 3527 Primary Rate Interface PRI Gateway; Unified Videoconferencing 3522 Basic Rate Interfaces BRI Gateway; and Unified Videoconferencing 3515 Multipoint Control Unit MCU improperly use cookies for...

5CVSS6.7AI score0.0026EPSS

Exploits0References1

OSV•added 2024/09/27 12:15 p.m.•1 views

CVE-2024-8644

Cleartext Storage of Sensitive Information in a Cookie vulnerability in Oceanic Software ValeApp allows Protocol Manipulation, : JSON Hijacking aka JavaScript Hijacking.This issue affects ValeApp: before v2.0.0...

7.5CVSS5.8AI score

Exploits0References1

OSV•added 2023/05/01 10:15 p.m.•0 views

CVE-2023-29681

Cleartext Transmission in cookie:ecospw: in Tenda N301 v6.0, firmware v12.03.01.06pt allows an authenticated attacker on the LAN or WLAN to intercept communications with the router and obtain the password...

5.7CVSS5.8AI score0.00039EPSS

Exploits2References2

OSV•added 2020/05/13 7:15 p.m.•0 views

CVE-2020-2013

A cleartext transmission of sensitive information vulnerability in Palo Alto Networks PAN-OS Panorama that discloses an authenticated PAN-OS administrator's PAN-OS session cookie. When an administrator issues a context switch request into a managed firewall with an affected PAN-OS Panorama versio...

8.8CVSS7.3AI score0.0034EPSS

Exploits0References1

Cvelist•added 2020/02/11 8:0 a.m.•11 views

CVE-2020-3935 TAIWAN SECOM CO., LTD. – Sensitivity Information Exposure

TAIWAN SECOM CO., LTD., a Door Access Control and Personnel Attendance Management system, stores users’ information by cleartext in the cookie, which divulges password to attackers...

7.5CVSS7.5AI score0.00218EPSS

Exploits0References3

Cvelist•added 2014/04/01 5:0 p.m.•12 views

CVE-2014-2212

The remember me feature in portal/scrauthentif.php in POSH aka Posh portal or Portaneo 3.0, 3.2.1, 3.3.0, and earlier stores the username and MD5 digest of the password in cleartext in a cookie, which allows attackers to obtain sensitive information by reading this cookie...

6.2AI score0.00291EPSS

Exploits1References3

Prion•added 2010/11/22 8:0 p.m.•12 views

Command injection

5CVSS6.8AI score0.0026EPSS

Exploits0References3Affected Software7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by