27 matches found
CVE-2017-18470
cPanel before 62.0.4 has a fixed password for the Munin MySQL test account SEC-196...
EUVD-2017-9586
Malware in sbrugna...
EUVD-2016-1856
Malware in sbrugna...
EUVD-2002-2424
Malware in sbrugna...
EUVD-2022-44398
Malicious code in bioql PyPI...
EUVD-2024-47119
Malicious code in bioql PyPI...
CVE-2022-41157
A specific file on the sERP server if KyungrinaraERP solution has a fixed password with the SYSTEM authority. This vulnerability could allow attackers to leak or steal sensitive information or execute malicious commands...
CVE-2024-43423
The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed...
CVE-2024-5514
MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote attackers who obtain this account can bypass IP access control restrictions and log in to the backend system without bei...
CVE-2024-5514 MinMax CMS - Hidden Functionality
MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote attackers who obtain this account can bypass IP access control restrictions and log in to the backend system without bei...
CVE-2024-5514
CVE-2024-5514 affects MinMax CMS by MinMax Digital Technology and involves a hidden administrative account with a fixed password that cannot be removed or disabled via the management interface. This allows remote attackers to bypass IP-based access controls and log in to the backend without being...
MinMax CMS 安全漏洞
MinMax CMS is a content management system. A security vulnerability exists in MinMax CMS that stems from the application containing a hidden administrator account with a fixed password that cannot be removed or disabled from the administrative interface...
PT-2024-3984 · Unknown · Minmax Cms
Name of the Vulnerable Software and Affected Versions: MinMax CMS affected versions not specified Description: The issue is related to a hidden administrator account with a fixed password in MinMax CMS. This account cannot be removed or disabled from the management interface, allowing remote...
CVE-2023-2611
Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not available in the users list. This hidden user has a password that cannot be changed by users...
CVE-2022-41157
A specific file on the sERP server if KyungrinaraERP solution has a fixed password with the SYSTEM authority. This vulnerability could allow attackers to leak or steal sensitive information or execute malicious commands...
Design/Logic Flaw
A specific file on the sERP server if KyungrinaraERP solution has a fixed password with the SYSTEM authority. This vulnerability could allow attackers to leak or steal sensitive information or execute malicious commands...
CVE-2022-41157
CVE-2022-41157 affects the sERP Server (Kyungrinara ERP solution) where a fixed password with SYSTEM authority creates a risk allowing leakage of sensitive data or execution of malicious commands. The connected documents confirm the vulnerability exists in the sERP server and describe the impact ...
PT-2022-25686 · Unknown · Kyungrinara
Name of the Vulnerable Software and Affected Versions: Kyungrinara affected versions not specified Description: The issue concerns a specific file on the sERP server of Kyungrinara, an ERP solution, which has a fixed password with SYSTEM authority. This could allow attackers to leak or steal...
sERP Server 信任管理问题漏洞
sERP Server is an enterprise management application from the Korean company sERP. A security vulnerability exists in sERP Server version 2.0 prior to 20.2.170, which stems from a fixed password that could allow an attacker to disclose/steal sensitive information or execute malicious commands if...
VulnCheck KEV: CVE-2020-29583
Zyxel firewalls ATP, USG, VM and AP Controllers NXC2500 and NXC5500 contain a use of hard-coded credentials vulnerability in an undocumented account "zyfwp" with an unchangeable password...