50 matches found
CVE-2026-33771
A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS might allow an unauthenticated, network-based attacker to exploit weak passwords of local accounts and potentially take full control of the device. The password management menu enables the...
EUVD-2026-21193
A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS might allow an unauthenticated, network-based attacker to exploit weak passwords of local accounts and potentially take full control of the device. The password management menu enables the...
CVE-2026-33771
A Weak Password Requirements vulnerability in the password management function of Juniper Networks CTP OS might allow an unauthenticated, network-based attacker to exploit weak passwords of local accounts and potentially take full control of the device. The password management menu enables the...
CVE-2026-33771
CVE-2026-33771 affects Juniper CTP OS (CTP OS) and its password management function, where password complexity requirements configured in the admin menu are not saved, allowing weak passwords. This could enable an unauthenticated, network-based attacker to exploit weak local passwords and potenti...
PT-2026-31797
Name of the Vulnerable Software and Affected Versions Juniper Networks CTP OS versions 9.2R1 and 9.2R2 Description A Weak Password Requirements issue in the password management function may allow an unauthenticated, network-based attacker to exploit weak passwords of local accounts and potentiall...
EUVD-2018-5288
Malware in sbrugna...
EUVD-2018-2702
Malware in sbrugna...
EUVD-2023-33999
Malicious code in bioql PyPI...
Malicious code in pug-ctp-filter (npm)
The package pug-ctp-filter was found to contain malicious code...
MAL-2025-30829 Malicious code in pug-ctp-filter (npm)
The package pug-ctp-filter was found to contain malicious code...
CVE-2023-2519
A vulnerability has been found in Caton CTP Relay Server 1.2.9 and classified as critical. This vulnerability affects unknown code of the file /server/api/v1/login of the component API. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely...
MISP 跨站脚本漏洞
MISP is an open source software solution. The product is used to collect, store, distribute and share cybersecurity metrics and has features such as threat cybersecurity event analysis and malware analysis. MISP version 2.4174 suffers from a cross-site scripting vulnerability that stems from the...
CVE-2023-2519
A vulnerability has been found in Caton CTP Relay Server 1.2.9 and classified as critical. This vulnerability affects unknown code of the file /server/api/v1/login of the component API. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely...
Sql injection
A vulnerability has been found in Caton CTP Relay Server 1.2.9 and classified as critical. This vulnerability affects unknown code of the file /server/api/v1/login of the component API. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely...
CVE-2023-2519
CVE-2023-2519 affects Caton CTP Relay Server 1.2.9. The vulnerability resides in the API endpoint /server/api/v1/login, where improper handling of the username and password parameters enables remote SQL injection. The issue is exploitable remotely and is classified as critical, with multiple sour...
CVE-2023-2519 Caton CTP Relay Server API login sql injection
A vulnerability has been found in Caton CTP Relay Server 1.2.9 and classified as critical. This vulnerability affects unknown code of the file /server/api/v1/login of the component API. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely...
CVE-2023-2519 Caton CTP Relay Server API login sql injection
A vulnerability has been found in Caton CTP Relay Server 1.2.9 and classified as critical. This vulnerability affects unknown code of the file /server/api/v1/login of the component API. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely...
Caton Technology CTP Relay Server SQL注入漏洞
Caton Technology CTP Relay Server is a TS stream management platform from Caton Technology, China. Designed to handle complex video routing, real-time status, a built-in TS analyzer and stream-level monitoring alerts, it provides network operators with continuous information about bandwidth,...
CVE-2021-24752
Multiple Plugins from the CatchThemes vendor do not perform capability and CSRF checks in the ctpswitch AJAX action, which could allow any authenticated users, such as Subscriber to change the Essential Widgets WordPress plugin before 1.9, To Top WordPress plugin before 2.3, Header Enhancement...
PT-2021-16253 · Catch Themes · Catch Infinite Scroll +12
Name of the Vulnerable Software and Affected Versions: Essential Widgets WordPress plugin versions prior to 1.9 To Top WordPress plugin versions prior to 2.3 Header Enhancement WordPress plugin versions prior to 1.5 Generate Child Theme WordPress plugin versions prior to 1.6 Essential Content Typ...