Lucene search
K

4 matches found

Cvelist
Cvelist
added 2026/05/05 7:33 p.m.31 views

CVE-2026-34527 Sandboxie-Plus EditPassword hash entropy reduced from 160 bits to 80 bits due to incorrect nibble extraction

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, SbieIniServer::HashPassword converts a SHA-1 digest to hexadecimal incorrectly. The high nibble of each byte is shifted right by 8 instead of 4, which always produces zero for an 8-bit...

2CVSS0.00091EPSS
Exploits0References1
CVE
CVE
added 2026/05/05 7:33 p.m.16 views

CVE-2026-34527

CVE-2026-34527 affects Sandboxie-Plus for Windows (versions 1.17.2 and earlier). The vulnerability arises in SbieIniServer::HashPassword, where the high nibble of each SHA-1 digest byte is extracted incorrectly (shifted by 8 instead of 4). This causes the stored EditPassword hash to preserve only...

5.3CVSS5.7AI score0.00091EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/05/05 7:33 p.m.3 views

CVE-2026-34527 Sandboxie-Plus EditPassword hash entropy reduced from 160 bits to 80 bits due to incorrect nibble extraction

Sandboxie-Plus is an open source sandbox-based isolation software for Windows. In versions 1.17.2 and earlier, SbieIniServer::HashPassword converts a SHA-1 digest to hexadecimal incorrectly. The high nibble of each byte is shifted right by 8 instead of 4, which always produces zero for an 8-bit...

2CVSS5.9AI score0.00091EPSS
Exploits0References3
seebug.org
seebug.org
added 2008/03/18 12:0 a.m.16 views

Exero CMS 1.0.1 (theme) Multiple Local File Inclusion Vulnerabilities

No description provided by source. Exero CMS 1.0.1 theme Multiple Local File Inclusion Vulnerabilities Script : http://switch.dl.sourceforge.net/sourceforge/exerocms/ExeroCMS1-0-1.rar Home Page : http://ecms.getox.net/ POC : /ExeroCMS1-0-1/themes/Default/usercp/index.php?theme=Local File %00...

7.1AI score
Exploits0
Rows per page
Query Builder