CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An issue was discovered in Castle Rock SNMPc Online 12.10.10 before 2020-01-28. It includes the username and password values in cleartext within each request's cookie value...

7.5CVSS7.2AI score0.00168EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 2:20 a.m.•3 views

CVE-2012-4974

Layton Helpbox 4.4.0 allows remote authenticated users to change the login context and gain privileges via a modified 1 loggedinenduser, 2 loggedinendusername, 3 loggedinuserusergroup, 4 loggedinuser, or 5 loggedinusername cookie...

6.5CVSS6.7AI score0.00391EPSS

Exploits1References1

Zero Science Lab•added 2025/01/06 12:0 a.m.•611 views

ABB Cylon Aspect 3.08.02 Cookie User Password Disclosure

Summary ASPECT is an award-winning scalable building energy management and control solution designed to allow users seamless access to their building data through standard building protocols including smart devices. Description The application suffers from cleartext transmission and storage of...

8.7CVSS7.2AI score0.17074EPSS

Exploits3

Vulnrichment•added 2023/06/13 11:50 a.m.•8 views

CVE-2023-3050 Authentication Bypass in TMT's Lockcell

Reliance on Cookies without Validation and Integrity Checking in a Security Decision vulnerability in TMT Lockcell allows Privilege Abuse, Authentication Bypass. This issue affects Lockcell: before 15...

9.8CVSS7.3AI score0.00143EPSS

Exploits1References3

RedHat Linux•added 2007/10/11 6:21 p.m.•48 views

Moderate: Red Hat Security Advisory: tomcat security update

Updated tomcat packages that fix multiple security issues are now available for Red Hat Application Server v2. This update has been rated as having moderate security impact by the Red Hat Security Response Team. Tomcat is a servlet container for Java Servlet and Java Server Pages technologies...

4.3CVSS5.7AI score0.81412EPSS

Exploits8References8

Packet Storm•added 2003/09/18 12:0 a.m.•35 views

dbabble.txt

first published on: http://members.lycos.co.uk/r34ct/ --------------------------------------------------------------------------------------------- DBabble 2.5i- Instant Messaging for the office XSS/Cookie problems Advisory...

7.4AI score

Exploits0

CERT•added 2003/07/18 12:0 a.m.•36 views

Weaknesses in MIT magic cookie and XDM X Windows authorization

Overview MIT magic cookie and XDM authorization contain vulnerabilities that could allow remote attackers to connect to X displays. Description Two widely used X Window System authorization schemes have weaknesses in their sample implementations. MIT-MAGIC-COOKIE-1 On some systems built without t...

7.3AI score

Exploits0

Cvelist•added 2003/05/30 4:0 a.m.•19 views

CVE-2002-1564

Internet Explorer 5.5 and 6.0 allows remote attackers to steal potentially sensitive information from cookies via a cookie that contains script which is executed when a page is loaded, aka the "Script within Cookies Reading Cookies" vulnerability...

6.2AI score0.20959EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by