Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.2 views

EUVD-2017-17044

Malware in sbrugna...

8.8CVSS8.8AI score0.00351EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/07 12:30 a.m.4 views

EUVD-2018-17321

Malware in sbrugna...

10CVSS6.8AI score0.00731EPSS
Exploits2References2
OSV
OSVadded 2025/08/28 1:33 p.m.2 views

GHSA-8FF6-PC43-JWV3 NeuVector has an insecure password storage vulnerable to rainbow attack

Impact NeuVector stores user passwords and API keys using a simple, unsalted hash. This method is vulnerable to rainbow table attack offline attack where hashes of known passwords are precomputed. NeuVector generates a cryptographically secure, random 16-character salt and uses it with the PBKDF2...

5.3CVSS7.1AI score0.00035EPSS
Exploits0References4
CVE
CVEadded 2018/03/19 3:0 p.m.40 views

CVE-2018-5552

CVE-2018-5552 affects DocuTrac QuicDoc and Office Therapy installers (DTISQLInstaller.exe, v1.6.4.0 and earlier). The root cause, per connected sources, is a hard-coded cryptographic salt named “S@l+&pepper” embedded in the installer. The documents do not specify the exact impact, attack vectors,...

3.3CVSS4AI score0.00025EPSS
Exploits1References1Affected Software1
Cvelist
Cvelistadded 2018/03/19 3:0 p.m.10 views

CVE-2018-5552 DocuTrac DTISQLInstaller.exe Hard-Coded Salt

Versions of DocuTrac QuicDoc and Office Therapy that ship with DTISQLInstaller.exe version 1.6.4.0 and prior contains a hard-coded cryptographic salt, "S@l+&pepper"...

2.9CVSS4.1AI score0.00025EPSS
Exploits1References1
OSV
OSVadded 2017/04/30 7:59 p.m.10 views

CVE-2017-8081

Poor cryptographic salt initialization in admin/inc/templatefunctions.php in GetSimple CMS 3.3.13 allows a network attacker to escalate privileges to an arbitrary user or conduct CSRF attacks via calculation of a session cookie or CSRF nonce...

8.8CVSS7.2AI score
Exploits0References1
NVD
NVDadded 2017/04/30 7:59 p.m.9 views

CVE-2017-8081

Poor cryptographic salt initialization in admin/inc/templatefunctions.php in GetSimple CMS 3.3.13 allows a network attacker to escalate privileges to an arbitrary user or conduct CSRF attacks via calculation of a session cookie or CSRF nonce...

8.8CVSS8.8AI score0.00351EPSS
Exploits0References1
Prion
Prionadded 2017/04/30 7:59 p.m.11 views

Cross site request forgery (csrf)

Poor cryptographic salt initialization in admin/inc/templatefunctions.php in GetSimple CMS 3.3.13 allows a network attacker to escalate privileges to an arbitrary user or conduct CSRF attacks via calculation of a session cookie or CSRF nonce...

6.8CVSS8.8AI score0.00351EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2017/04/30 7:0 p.m.39 views

CVE-2017-8081

CVE-2017-8081 affects GetSimple CMS 3.3.13. The issue is a poor cryptographic salt initialization in admin/inc/template_functions.php, which can allow a network attacker to escalate privileges to an arbitrary user or perform CSRF attacks by manipulating session cookies or CSRF nonces. The root ca...

8.8CVSS8.8AI score0.00351EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2006/02/08 1:2 a.m.8 views

CVE-2006-0591

The cryptgensalt functions for BSDI-style extended DES-based and FreeBSD-sytle MD5-based password hashes in cryptblowfish 0.4.7 and earlier do not evenly and randomly distribute salts, which makes it easier for attackers to guess passwords from a stolen password file due to the increased number o...

1.2CVSS6.5AI score0.00091EPSS
Exploits0References13
Rows per page
Query Builder