Lucene search
K

9 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2014-1988

Malware in sbrugna...

4.3CVSS6.4AI score0.01529EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2014-1989

Malware in sbrugna...

4.3CVSS6.4AI score0.01066EPSS
Exploits0References3
NVD
NVD
added 2014/02/10 10:55 p.m.20 views

CVE-2014-1931

The user login page in Visibility Software Cyber Recruiter before 8.1.00 generates different responses for invalid password-retrieval attempts depending on which data elements are incorrect, which might allow remote attackers to obtain account-related information via a series of requests...

4.3CVSS6.3AI score0.01066EPSS
Exploits0References2
NVD
NVD
added 2014/02/10 10:55 p.m.18 views

CVE-2014-1930

Visibility Software Cyber Recruiter before 8.1.00 does not use the appropriate combination of HTTPS transport and response headers to prevent access to 1 AppSelfService.aspx and 2 AgencyPortal.aspx in the browser history, which allows remote attackers to obtain sensitive information by leveraging...

4.3CVSS6.2AI score0.01529EPSS
Exploits0References6
Prion
Prion
added 2014/02/10 10:55 p.m.18 views

Design/Logic Flaw

Visibility Software Cyber Recruiter before 8.1.00 does not use the appropriate combination of HTTPS transport and response headers to prevent access to 1 AppSelfService.aspx and 2 AgencyPortal.aspx in the browser history, which allows remote attackers to obtain sensitive information by leveraging...

4.3CVSS6.7AI score0.01529EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2014/02/10 10:0 p.m.39 views

CVE-2014-1931

The CVE-2014-1931 issue affects Visibility Software Cyber Recruiter prior to version 8.1.00. The login page returns different responses to invalid password-retrieval attempts depending on which data elements are incorrect, enabling potential information disclosure about-account information throug...

4.3CVSS6.5AI score0.01066EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2014/02/10 10:0 p.m.20 views

CVE-2014-1931

The user login page in Visibility Software Cyber Recruiter before 8.1.00 generates different responses for invalid password-retrieval attempts depending on which data elements are incorrect, which might allow remote attackers to obtain account-related information via a series of requests...

6.3AI score0.01066EPSS
Exploits0References2
CVE
CVE
added 2014/02/10 10:0 p.m.53 views

CVE-2014-1930

Visibility Software Cyber Recruiter prior to version 8.1.00 is vulnerable due to an improper HTTPS transport/response header configuration that permits browser-history access to (1) AppSelfService.aspx and (2) AgencyPortal.aspx, enabling an attacker to obtain sensitive information from an unatten...

4.3CVSS6.4AI score0.01529EPSS
Exploits0References6Affected Software1
CERT
CERT
added 2014/02/03 12:0 a.m.21 views

Visibility Software Cyber Recruiter authentication bypass vulnerability

Overview Visibility Software Cyber Recruiter fails to prevent unauthenticated users from accessing protected webpages. Description CWE-305: Authentication Bypass by Primary Weakness:Visibility Software Cyber Recruiter fails to prevent unauthenticated users from accessing protected webpages allowi...

7.3AI score
Exploits0References1
Rows per page
Query Builder