CVE-2026-9039

CVE-2026-9039 affects the XCharge C6 via a configuration weakness in the device’s remote management service. An authenticated session can be established over a channel intended only for vehicle-charger signaling. The service is exposed on interfaces at the charging connector and accepts a default...

EUVD-2026-30937

Tyler Identity Local TID-L uses documented, default administrative credentials. Users are not required to change the credentials before deployment. TID-L has not been distributed since December 2020, and has not been supported since 2021...

PT-2025-39391

Name of the Vulnerable Software and Affected Versions iMonitor EAM version 9.6394 Description The software ships with default administrative credentials that are displayed within the management client’s connection dialog. If the administrator does not change these defaults, a remote attacker can...

Airship AI Acropolis 安全漏洞

Airship AI Acropolis is a video and wear Blue Flag data management platform from Airship AI in the United States. Airship AI Acropolis has a security vulnerability that stems from the use of default administrator account credentials, which could allow a remote attacker to log in and gain account...

Digisol DG-GR6821AC Router 安全漏洞

Digisol DG-GR6821AC Router is a WiFi router from Digisol India. A security vulnerability exists in the Digisol DG-GR6821AC Router that stems from the use of default administrator credentials, which could lead to a physical access attacker gaining unauthorized access...

CVE-2025-48045

An unauthenticated HTTP GET request to the /client.php endpoint will disclose the default administrator user credentials...

CVE-2025-48045 MICI Network Co. Ltd. NetFax Server Default Administrator Credentials Disclosure

An unauthenticated HTTP GET request to the /client.php endpoint will disclose the default administrator user credentials...

CVE-2025-48045

CVE-2025-48045 is an unauthenticated risk in the NetFax Server family where an HTTP GET to /client.php discloses the default administrator credentials. The entry carries CVSS v4.0 base metrics (AV:N/AC:L/PR:N/UI:N/SI:N/VI:N/VA:N; Confidentiality High). Red Hat and NVD records corroborate the exac...

MICI NetFax Server 安全漏洞

MICI NetFax Server is a product suite from China's MICI Corporation MICI designed to receive fax messages to user mailboxes via e-mail traffic. A security vulnerability exists in MICI NetFax Server versions prior to 3.0.1.0, which stems from an unauthenticated HTTP GET request that could disclose...

CVE-2020-35296

ThinkAdmin v6 has default administrator credentials, which allows attackers to gain unrestricted administratior dashboard access...

CVE-2022-2336

Softing Secure Integration Server, edgeConnector, and edgeAggregator software ships with the default administrator credentials as admin and password as admin. This allows Softing to log in to the server directly to perform administrative functions. Upon installation or upon first login, the...

Design/Logic Flaw

ThinkAdmin v6 has default administrator credentials, which allows attackers to gain unrestricted administratior dashboard access...

PT-2021-11745 · Unknown · Thinkadmin

Name of the Vulnerable Software and Affected Versions: ThinkAdmin version 6 Description: The issue concerns default administrator credentials in ThinkAdmin, allowing attackers to gain unrestricted access to the administrator dashboard. Recommendations: For ThinkAdmin version 6, change the default...

Zoho ManageEngine DataSecurity Plus Authorization Issues Vulnerability

Zoho ManageEngine DataSecurity Plus is a sensitive data management solution from Zoho USA. The product features data leakage prevention, data risk assessment and file server auditing. Zoho ManageEngine DataSecurity Plus suffers from an authorization issue vulnerability that arises when the progra...

Default credentials

A vulnerability in the ConfD CLI of Cisco Elastic Services Controllers could allow an authenticated, remote attacker to log in to an affected system as the admin user, aka an Insecure Default Administrator Credentials Vulnerability. More Information: CSCvc76661. Known Affected Releases: 2.29.76...

Citrix NetScaler Web Management Interface Default Administrator Credentials

The remote Citrix NetScaler Web Management Interface uses a default password 'nsroot' for the administrator account 'nsroot'. With this information, an attacker can gain complete administrative access to the Citrix NetScaler appliance. %NASLMINLEVEL 70300 C Tenable Network Security, Inc...

Asterisk Recording Interface (ARI) Default Administrator Credentials

The remote web server hosts Asterisk Recording Interface ARI, which provides a web-enabled interface for Asterisk users to manage their voicemail and phone features. The remote installation of ARI uses a default set of credentials for the administrator's account. With this information, an attacke...