CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNNVD•added 2026/03/12 12:0 a.m.•2 views

QNAP Systems Hyper Data Protector 安全漏洞

QNAP Systems Hyper Data Protector is a comprehensive backup software developed by QNAP Systems, a company based in Taiwan, China. There is a security vulnerability in QNAP Systems Hyper Data Protector, which stems from the use of hardcoded passwords. This vulnerability may allow remote attackers ...

9.8CVSS6.6AI score0.00196EPSS

CNNVD•added 2026/02/06 12:0 a.m.•2 views

PlaciPy 安全漏洞

PlaciPy is an open-source employment management system developed by Praskla Technology. It aims to simplify the employment processes for students, trainers, and administrators in educational institutions. Version 1.0.0 of PlaciPy contains a security vulnerability. This vulnerability stems from th...

9.8CVSS5.8AI score0.00025EPSS

NVD•added 2026/01/26 10:16 a.m.•2 views

CVE-2025-59103

The Access Manager 92xx in hardware revision K7 is based on Linux instead of Windows CE embedded in older hardware revisions. In this new hardware revision it was noticed that an SSH service is exposed on port 22. By analyzing the firmware of the devices, it was noticed that there are two users...

9.2CVSS0.00075EPSS

EUVD•added 2026/01/26 10:5 a.m.•2 views

EUVD-2025-206370

CVE•added 2026/01/26 10:5 a.m.•10 views

CVE-2025-59103

CVE-2025-59103 concerns the Access Manager 92xx hardware revision K7. The Red Hat/NVD/CVE entries describe an SSH service exposed on port 22 with two users that have hardcoded and weak passwords, allowing SSH access. A key root-cause is that password randomization on first deployment is condition...

ATTACKERKB•added 2026/01/26 10:5 a.m.•3 views

CVE-2025-59103

Positive Technologies•added 2026/01/26 12:0 a.m.•2 views

Exploits0References4

PT-2026-4753

Name of the Vulnerable Software and Affected Versions Access Manager 92xx hardware revision K7 affected versions not specified Description The Access Manager 92xx hardware revision K7 utilizes a Linux-based operating system, differing from older revisions that used Windows CE. An SSH service is...

RedhatCVE•added 2026/01/09 12:8 p.m.•5 views

Exploits0References9

CVE-2018-6387

iBall iB-WRA150N 1.2.6 build 110401 Rel.47776n devices have a hardcoded password of admin for the admin account, a hardcoded password of support for the support account, and a hardcoded password of user for the user account...

10CVSS7.3AI score0.00719EPSS

Exploits1References1

RedhatCVE•added 2026/01/09 9:57 a.m.•4 views

CVE-2020-12039

Baxter Sigma Spectrum Infusion Pumps Sigma Spectrum Infusion System v's6.x model 35700BAX & Baxter Spectrum Infusion System v's8.x model 35700BAX2 contain hardcoded passwords when physically entered on the keypad provide access to biomedical menus including device settings, view calibration value...

2.4CVSS6.8AI score0.00055EPSS

RedhatCVE•added 2025/10/17 7:50 a.m.•4 views

CVE-2025-10850

The Felan Framework plugin for WordPress is vulnerable to improper authentication in versions up to, and including, 1.1.4. This is due to the hardcoded password in the 'fbajaxloginorregister' function and in the 'googleajaxloginorregister' function. This makes it possible for unauthenticated...

9.8CVSS5.9AI score0.00235EPSS

NVD•added 2025/10/16 7:15 a.m.•3 views

CVE-2025-10850

9.8CVSS0.00235EPSS

Exploits0References2

EUVD•added 2025/10/16 6:47 a.m.•2 views

EUVD-2025-34721

9.8CVSS5.9AI score0.00235EPSS