CVE-2025-34205 Vasion Print (formerly PrinterLogic) Dangerous PHP Dead Code Enables RCE

Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 22.0.843 and Application prior to 20.0.1923 VA and SaaS deployments contains dangerous PHP dead code present in multiple Docker-hosted PHP instances. A script named /var/www/app/resetroot.php found in several containers...

PT-2025-38610

Name of the Vulnerable Software and Affected Versions Vasion Print Virtual Appliance Host versions prior to 22.0.843 Vasion Print Application versions prior to 20.0.1923 Description Vasion Print contains dangerous PHP dead code in multiple Docker-hosted PHP instances. A script located at...

CVE-2024-1346

Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to calculate the root password of the MySQL database used by LaborOfficeFree using two constants...

PT-2024-1929 · Unknown · Mysql Server +1

Name of the Vulnerable Software and Affected Versions: LaborOfficeFree version 19.10 Description: The issue is related to weak password requirements in LaborOfficeFree, which can be exploited to perform a brute force attack. This allows an attacker to easily discover the root password of the MySQ...

PT-2024-1925 · Unknown · Mysql Server +1

Name of the Vulnerable Software and Affected Versions: LaborOfficeFree version 19.10 Description: The issue is related to a weak MySQL database root password in LaborOfficeFree. This allows an attacker to calculate the root password of the MySQL database used by LaborOfficeFree using two constant...

CVE-2018-14703

Incorrect access control in the /mysql/api/droboapp/data endpoint in Drobo 5N2 NAS version 4.0.5-13.28.96115 allows unauthenticated attackers to retrieve the MySQL database root password...