3044 matches found
D-Link DIR-820LW 安全漏洞
The D-Link DIR-820LW is a dual-band wireless router from China-based AUO D-Link. A security vulnerability exists in the D-Link DIR-820LW REVB FIRMWARE PATCH version 2.03.B01TC, which originates from the inclusion of hardcoded credentials in the Telnet service, allowing an attacker to remotely log...
PT-2024-29462 · D Link · Dir-860L
Name of the Vulnerable Software and Affected Versions: D-Link DIR-860L REVA FIRMWARE versions 1.10 through 1.10.B04 Description: The issue concerns hardcoded credentials in the Telnet service, allowing remote login and execution of arbitrary commands. Recommendations: For versions 1.10 through...
PT-2024-29461 · D Link · D-Link Dir-820L
Name of the Vulnerable Software and Affected Versions: D-Link DIR-820LW REVB FIRMWARE versions prior to 2.03.B01 TC Description: The issue concerns hardcoded credentials in the Telnet service, allowing attackers to log in remotely and execute arbitrary commands. Recommendations: For versions prio...
CVE-2024-41611
CVE-2024-41611 affects the D-Link DIR-860L REVA router firmware PATCH 1.10..B04, where the Telnet service contains hardcoded credentials , enabling remote login and execution of arbitrary commands. The vulnerability is documented across multiple sources (NVD/Red Hat/CNVD/CNNVD/OpenVAS entries) an...
CVE-2024-41610
D-Link DIR-820LW REVB FIRMWARE PATCH 2.03.B01TC contains hardcoded credentials in the Telnet service, enabling attackers to log in remotely to the Telnet service and perform arbitrary commands...
CVE-2024-41611
In D-Link DIR-860L REVA FIRMWARE PATCH 1.10..B04, the Telnet service contains hardcoded credentials, enabling attackers to log in remotely to the Telnet service and perform arbitrary commands...
CVE-2024-5810
The WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.0.1. This is due to the use of hardcoded credentials to authenticate all the incoming API requests. This makes it possible for...
CVE-2024-5810 WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 <= 1.0.1 - Improper Authorization due to use of Hardcoded Credentials
The WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.0.1. This is due to the use of hardcoded credentials to authenticate all the incoming API requests. This makes it possible for...
CVE-2024-5810
The CVE-2024-5810 entry concerns the WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 WordPress plugin. The connected Red Hat entry confirms that all versions up to 1.0.1 are affected due to hard-coded credentials used to authenticate incoming API requests, enabling unauthenticated atta...
CVE-2024-5810 WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 <= 1.0.1 - Improper Authorization due to use of Hardcoded Credentials
The WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin for WordPress is vulnerable to unauthorized access in all versions up to, and including, 1.0.1. This is due to the use of hardcoded credentials to authenticate all the incoming API requests. This makes it possible for...
WordPress WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin <= 1.0.1 - Improper Authorization due to use of Hardcoded Credentials vulnerability
Improper Authorization due to use of Hardcoded Credentials vulnerability discovered by Lucio Sá in WordPress Plugin WP2Speed Faster versions = 1.0.1...
CVE-2024-28751
An high privileged remote attacker can enable telnet access that accepts hardcoded credentials...
CVE-2024-28751 ifm: Hardcoded telnet credentials in Smart PLC
An high privileged remote attacker can enable telnet access that accepts hardcoded credentials...
CVE-2024-28751
CVE-2024-28751 affects ifm electronic Smart PLC AC14xx and AC4xxS (versions 4.3.17 and earlier per CNVD/CVE records). The issue is a trust management vulnerability enabling a remote, high-privilege attacker to enable telnet access with hardcoded credentials. Impact described as remote, unauthenti...
PT-2024-37173 · WordPress · Wp2Speed Faster – Optimize Pagespeed Insights Score
Name of the Vulnerable Software and Affected Versions: WP2Speed Faster – Optimize PageSpeed Insights Score 90-100 plugin for WordPress versions up to, and including, 1.0.1 Description: The issue is due to the use of hardcoded credentials to authenticate all incoming API requests. This allows...
PT-2024-22560 · Ifm · Smart Plc Ac14Xx Firmware +1
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: A high privileged remote attacker can enable telnet access that accepts hardcoded credentials. Recommendations: At the moment, there is no information...
CVE-2023-41919
Hardcoded credentials are discovered within the application's source code, creating a potential security risk for unauthorized access...
PT-2024-13010 · Kiloview · P1/P2 +4
Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned. Description: Hardcoded credentials are discovered within the application's source code, creating a potential security risk for unauthorized access. Recommendations: At the moment, there is no...
CVE-2024-39208
luci-app-lucky v2.8.3 was discovered to contain hardcoded credentials...
CVE-2024-39208
luci-app-lucky v2.8.3 was discovered to contain hardcoded credentials...