31 matches found
CVE-2017-18470
cPanel before 62.0.4 has a fixed password for the Munin MySQL test account SEC-196...
EUVD-2017-9586
Malware in sbrugna...
EUVD-2016-1856
Malware in sbrugna...
EUVD-2002-2424
Malware in sbrugna...
EUVD-2022-44398
Malicious code in bioql PyPI...
EUVD-2024-47119
Malicious code in bioql PyPI...
The vulnerability of the g_F_n_GenPassForQlync function in the microprogramming software of D-Link DCS-7517 cameras allows a intruder to compromise the confidentiality of the protected information.
The vulnerability of the gFnGenPassForQlync function in the microprogramming software of D-Link DCS-7517 cameras is related to the use of fixed password encoding. Exploiting this vulnerability could allow a malicious actor to compromise the confidentiality of the information being protected...
CVE-2022-41157
A specific file on the sERP server if KyungrinaraERP solution has a fixed password with the SYSTEM authority. This vulnerability could allow attackers to leak or steal sensitive information or execute malicious commands...
CVE-2024-43423
The web application for ProGauge MAGLINK LX4 CONSOLE contains an administrative-level user account with a password that cannot be changed...
The vulnerability of the /etc/passwd component in D-Link DIR-605L router microprogramming software allows a hacker to gain access to the system with root privileges.
The vulnerability of the /etc/passwd component in D-Link DIR-605L router microprogramming systems is related to the use of fixed password encoding. Exploiting this vulnerability could allow a malicious actor, operating remotely, to gain access to the system with root privileges...
CVE-2024-5514
MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote attackers who obtain this account can bypass IP access control restrictions and log in to the backend system without bei...
CVE-2024-5514
CVE-2024-5514 affects MinMax CMS by MinMax Digital Technology and involves a hidden administrative account with a fixed password that cannot be removed or disabled via the management interface. This allows remote attackers to bypass IP-based access controls and log in to the backend without being...
CVE-2024-5514 MinMax CMS - Hidden Functionality
MinMax CMS from MinMax Digital Technology contains a hidden administrator account with a fixed password that cannot be removed or disabled from the management interface. Remote attackers who obtain this account can bypass IP access control restrictions and log in to the backend system without bei...
MinMax CMS 安全漏洞
MinMax CMS is a content management system. A security vulnerability exists in MinMax CMS that stems from the application containing a hidden administrator account with a fixed password that cannot be removed or disabled from the administrative interface...
PT-2024-3984 · Unknown · Minmax Cms
Name of the Vulnerable Software and Affected Versions: MinMax CMS affected versions not specified Description: The issue is related to a hidden administrator account with a fixed password in MinMax CMS. This account cannot be removed or disabled from the management interface, allowing remote...
CVE-2023-2611
Advantech R-SeeNet versions 2.4.22 is installed with a hidden root-level user that is not available in the users list. This hidden user has a password that cannot be changed by users...
The vulnerability of the FTP server function of microprogrammed logic controllers MELSEC RJ71EIP91, SW1DNN-EIPCT-BD, FX5-ENET/IP, SW1DNN-EIPCTFX5-BD allows a intruder to gain unauthorized access to protected information.
The vulnerability of the FTP server functions of microprogrammed logic controllers such as MELSEC RJ71EIP91, SW1DNN-EIPCT-BD, FX5-ENET/IP, and SW1DNN-EIPCTFX5-BD is related to the use of fixed password encoding. Exploiting this vulnerability can allow an intruder to gain unauthorized access to...
CVE-2022-41157
A specific file on the sERP server if KyungrinaraERP solution has a fixed password with the SYSTEM authority. This vulnerability could allow attackers to leak or steal sensitive information or execute malicious commands...
Design/Logic Flaw
A specific file on the sERP server if KyungrinaraERP solution has a fixed password with the SYSTEM authority. This vulnerability could allow attackers to leak or steal sensitive information or execute malicious commands...
sERP Server 信任管理问题漏洞
sERP Server is an enterprise management application from the Korean company sERP. A security vulnerability exists in sERP Server version 2.0 prior to 20.2.170, which stems from a fixed password that could allow an attacker to disclose/steal sensitive information or execute malicious commands if...