Lucene search
K

17 matches found

Cvelist
Cvelist
added 2026/01/19 6:13 p.m.15 views

CVE-2025-55252 HCL AION is affected by a Weak Password Policy vulnerability

HCL AION version 2 is affected by a Weak Password Policy vulnerability. This can allow the use of easily guessable passwords, potentially resulting in unauthorized access...

3.1CVSS0.00149EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:37 a.m.3 views

CVE-1999-0521

An NIS domain name is easily guessable...

7.2CVSS7AI score0.00432EPSS
Exploits0References1
Malwarebytes
Malwarebytes
added 2025/12/16 11:46 a.m.6 views

Photo booth flaw exposes people’s private pictures online

Photo booths are great. You press a button and get instant results. The same can’t be said, allegedly, for the security practices of at least one company operating them. A security researcher spent weeks trying to warn a photo booth operator about a vulnerability in its system. The flaw reportedl...

6.9AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-1999-0519

Malware in sbrugna...

7.2CVSS6.4AI score0.00432EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2020-0307

Malware in sbrugna...

7.5CVSS7.5AI score0.0183EPSS
Exploits1References6
NVD
NVD
added 2024/11/01 5:15 p.m.15 views

CVE-2024-51431

LB-LINK BL-WR 1300H v.1.0.4 contains hardcoded credentials stored in /etc/shadow which are easily guessable...

9.8CVSS0.00561EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/11/01 12:0 a.m.14 views

CVE-2024-51431

LB-LINK BL-WR 1300H v.1.0.4 contains hardcoded credentials stored in /etc/shadow which are easily guessable...

6.9AI score0.00561EPSS
Exploits1References2
CVE
CVE
added 2024/11/01 12:0 a.m.51 views

CVE-2024-51431

The CVE-2024-51431 entry affects LB-LINK BL-WR 1300H v1.0.4, where hardcoded credentials are stored in /etc/shadow and are easily guessable. Public records (NVD and related feeds) consistently describe this as a credential exposure with high to critical impact potential (CVE details: high confide...

9.8CVSS6.7AI score0.00561EPSS
Exploits1References2Affected Software1
WPVulnDB
WPVulnDB
added 2023/06/23 12:0 a.m.12 views

MainWP Child < 4.4.1.1 - Sensitive File Disclosure

The plugin uses an easily guessable path to store user files, bad actors could use that to access other users' sensitive files...

7.5CVSS6.7AI score0.00662EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2023/01/03 12:0 a.m.10 views

WordPress Autoptimize Plugin < 3.1.0 Information Disclosure Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:autoptimize:autoptimize"; ifdescription...

5.3CVSS5.4AI score0.0146EPSS
Exploits1References1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2022/11/01 12:0 a.m.44 views

JVN#46345126: Multiple vulnerabilities in the web interfaces of Kyocera Document Solutions MFPs and printers

The web interface "Command Center" of multiple MFPs and printers provided by KYOCERA Document Solutions Inc. contain multiple vulnerabilities listed below. Session Information Easily Guessable CWE-287 - CVE-2022-41798 Version| Vector| Score ---|---|--- CVSS v3|...

6.5CVSS6.4AI score0.00823EPSS
Exploits0
Schneier on Security
Schneier on Security
added 2021/07/06 2:27 p.m.51 views

Vulnerability in the Kaspersky Password Manager

A vulnerability just patched in the random number generator used in the Kaspersky Password Manager resulted in easily guessable passwords: The password generator included in Kaspersky Password Manager had several problems. The most critical one is that it used a PRNG not suited for cryptographic...

0.7AI score
Exploits0
OSV
OSV
added 2020/02/17 8:15 p.m.18 views

CVE-2019-10790

taffydb npm module, vulnerable in all versions up to and including 2.7.3, allows attackers to forge adding additional properties into user-input processed by taffy which can allow access to any data items in the DB. taffy sets an internal index for each data item in its DB. However, it is found...

7.5CVSS7.5AI score0.0183EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2016/12/13 12:0 a.m.268 views

MS16-155: Security Update for .NET Framework (3205640)

The remote Windows host is missing a security update. It is, therefore, affected by an information disclosure vulnerability in the .NET Framework Data Provider for SQL Server due to improper handling of developer-supplied keys. An unauthenticated, remote attacker can exploit this to disclose...

7.5CVSS7.6AI score0.20008EPSS
Exploits0References2
Cvelist
Cvelist
added 2007/10/23 1:0 a.m.17 views

CVE-2003-1457

Auerswald COMsuite CTI ControlCenter 3.1 creates a default "runasositron" user account with an easily guessable password, which allows local users or remote attackers to gain access...

6.7AI score0.00529EPSS
Exploits0References4
Cvelist
Cvelist
added 2000/06/15 4:0 a.m.18 views

CVE-2000-0384

NetStructure 7110 and 7180 have undocumented accounts servnow, root, and wizard whose passwords are easily guessable from the NetStructure's MAC address, which could allow remote attackers to gain root access...

6.9AI score0.05892EPSS
Exploits0References5
Positive Technologies
Positive Technologies
added 1997/01/01 12:0 a.m.3 views

PT-1997-1149 · Undefined · Undefined

Name of the Vulnerable Software and Affected Versions: No specific software or versions mentioned Description: The issue concerns an NIS domain name that is easily guessable. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...

7.2CVSS6.3AI score0.00432EPSS
Exploits0References2
Rows per page
Query Builder