16 matches found
CVE-2019-20074
On Netis DL4323 devices, any user role can view sensitive information, such as a user password or the FTP password, via the form2saveConf.cgi page...
EUVD-1999-1252
Malware in sbrugna...
EUVD-2001-0965
Malware in sbrugna...
CVE-2019-0315
Under certain conditions the PI Integration Builder Web UI of SAP NetWeaver Process Integration versions: SAPXIESR: 7.10 to 7.11, 7.20, 7.30, 7.31, 7.40, 7.50, SAPXITOOL: 7.10 to 7.11, 7.30, 7.31, 7.40, 7.50 and SAPXIPCK 7.10 to 7.11, 7.20, 7.30 allows an attacker to access passwords used in FTP...
PT-2021-20935 · Tibco Software · Tibco Jasperreports Server For Aws Marketplace +5
Name of the Vulnerable Software and Affected Versions: TIBCO JasperReports Server versions 7.2.1 and below TIBCO JasperReports Server versions 7.5.0 and 7.5.1 TIBCO JasperReports Server version 7.8.0 TIBCO JasperReports Server version 7.9.0 TIBCO JasperReports Server - Community Edition versions...
Arbitrary File Read Vulnerability in oyplus-cms
oyplus-cms Yue video is a PHP and MySQL based open source video background management system . The system has a video resource acquisition , user feedback management , automatic address resolution and message push management and other functions . oyplus-cms 1.6.0 version of an arbitrary file read...
CVE-2020-6857
CarbonFTP v1.4 uses insecure proprietary password encryption with a hard-coded weak encryption key. The key for local FTP server passwords is hard-coded in the binary...
NETIS SYSTEMS DL4323 Information Disclosure Vulnerability
NETCORE Netis DL4323 is a multi-function modem from China's NETCORE. An information disclosure vulnerability exists in the NETCORE Netis DL4323, which can be exploited by an attacker to view sensitive information user passwords or FTP passwords...
Nocturnal Stealer Lets Low-Skilled Cybercrooks Harvest Sensitive Info
The Nocturnal Stealer malware has crept into the Dark Web like a thief in the night, offering criminals a lucrative payday for a small price — and little effort. It’s a commodity malware, debuting on an underground forum in March for the low price of $25. It steals things, including 28 different...
CVE-2005-4066
Total Commander 6.53 uses weak encryption to store FTP usernames and passwords in WCXFTP.INI, which allows local users to decrypt the passwords and gain access to FTP servers, as possibly demonstrated by the W32.Gudeb worm...
CVE-2001-0983
UltraEdit uses weak encryption to record FTP passwords in the uedit32.ini file, which allows local users who can read the file to decrypt the passwords and gain privileges...
CVE-2001-0983
The CVE-2001-0983 entry concerns UltraEdit, where FTP passwords are stored in the uedit32.ini file using weak encryption. This weakness allows local users who can read the file to decrypt passwords and potentially gain privileges. The available connected documents corroborate UltraEdit as the aff...
CVE-1999-1271
CVE-1999-1271 concerns Macromedia Dreamweaver, where credentials for FTP are stored with weak encryption. The root cause is weak encryption that enables local users to decrypt other users’ FTP passwords. The entry provides a high-level impact on confidentiality (partial) but does not specify affe...
CVE-2001-0983
UltraEdit uses weak encryption to record FTP passwords in the uedit32.ini file, which allows local users who can read the file to decrypt the passwords and gain privileges...
Microsoft Internet Explorer 5 - FTP Password Storage
Microsoft Internet Explorer 5 - FTP Password Storage Microsoft Internet Explorer 5.0 for Windows 2000/Windows NT 4 FTP Password Storage Vulnerability source: https://www.securityfocus.com/bid/610/info FTP usernames and passwords for sites accessed via Internet Explorer 5.X are stored cleartext in...
CVE-1999-1271
Macromedia Dreamweaver uses weak encryption to store FTP passwords, which could allow local users to easily decrypt the passwords of other users...