Lucene search
+L

6 matches found

RedhatCVE
RedhatCVE
added 2025/03/21 4:20 p.m.7 views

CVE-2025-26485

A vulnerability in Beta80 Life 1st enables the retrieval of different error messages for failed authentication attempts in case of the usage of a wrong password or a non existent user. The difference in the returned error messages could be used by attackers to understand whether a certain user is...

5.8CVSS6.8AI score0.00295EPSS
Exploits0References1
Circl
Circl
added 2025/03/19 6:43 p.m.6 views

CVE-2025-26485

creationtimestamp| type| source ---|---|--- 2025-03-19 18:43:46+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkqtnbxbgx26 2025-03-19 18:49:30+00:00| seen| https://t.me/cvedetector/20653 2025-08-12 13:33:27+00:00| seen| MISP/02fb130c-7874-4693-9b66-81ed91a2e996 2025-08-21...

5.8CVSS4.8AI score0.00295EPSS
Exploits0References2
NVD
NVD
added 2025/03/19 4:15 p.m.9 views

CVE-2025-26485

A vulnerability in Beta80 Life 1st enables the retrieval of different error messages for failed authentication attempts in case of the usage of a wrong password or a non existent user. The difference in the returned error messages could be used by attackers to understand whether a certain user is...

5.8CVSS0.00295EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/03/19 3:27 p.m.19 views

CVE-2025-26485

A vulnerability in Beta80 Life 1st enables the retrieval of different error messages for failed authentication attempts in case of the usage of a wrong password or a non existent user. The difference in the returned error messages could be used by attackers to understand whether a certain user is...

5.8CVSS0.00295EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/03/19 3:27 p.m.11 views

CVE-2025-26485

A vulnerability in Beta80 Life 1st enables the retrieval of different error messages for failed authentication attempts in case of the usage of a wrong password or a non existent user. The difference in the returned error messages could be used by attackers to understand whether a certain user is...

5.8CVSS6.8AI score0.00295EPSS
Exploits0References2
CVE
CVE
added 2025/03/19 3:27 p.m.70 views

CVE-2025-26485

The CVE-2025-26485 entry describes a vulnerability in Beta80 Life 1st (affected version: 1.5.2.14234) where authentication error handling reveals differing messages for wrong passwords versus non-existent users. This enables potential user enumeration and information disclosure about registered i...

5.8CVSS6.8AI score0.00295EPSS
Exploits0References2
Rows per page
Query Builder