Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7555 matches found

CNNVD
CNNVDadded 2025/05/08 12:0 a.m.3 views

TeleMessage archiving backend 安全漏洞

TeleMessage archiving backend is an enterprise-grade communications archiving platform from TeleMessage Israel that supports SMS/voice/social media compliant storage and auditing. A security vulnerability exists in TeleMessage archiving backend version 2025-05-05 and earlier, which stems from API...

7.5CVSS6.8AI score0.00323EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/05/08 12:0 a.m.7 views

PT-2025-20382 · Telemessage · Telemessage Archiving Backend

Name of the Vulnerable Software and Affected Versions: TeleMessage archiving backend versions through 2025-05-05 Description: The issue concerns the acceptance of API calls from the TM SGNL aka Archive Signal app to request an authentication token, using hardcoded credentials. The credentials use...

4.8CVSS6.6AI score0.00323EPSS
Exploits0References8
CNVD
CNVDadded 2025/05/07 12:0 a.m.2 views

TOTOLINK A810R Trust Management Issue Vulnerability

TOTOLINK A810R is a wireless dual-band router from China's Gion Electronics TOTOLINK. A trust management issue vulnerability exists in TOTOLINK A810R version V4.1.2cu.5182B20201026, which stems from the presence of hardcoded passwords in product.ini. An attacker can exploit the vulnerability to...

6.5CVSS7.1AI score0.00244EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/05/03 1:14 a.m.13 views

CVE-2025-32889

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

8.8CVSS7.5AI score0.0016EPSS
Exploits0References1
OSV
OSVadded 2025/05/01 6:15 p.m.5 views

CVE-2025-32888

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

8.8CVSS5.8AI score0.0016EPSS
Exploits0References2
OSV
OSVadded 2025/05/01 6:15 p.m.5 views

CVE-2025-32889

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

8.8CVSS5.8AI score0.0016EPSS
Exploits0References2
NVD
NVDadded 2025/05/01 6:15 p.m.11 views

CVE-2025-32889

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

8.8CVSS0.0016EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/05/01 12:0 a.m.4 views

CVE-2025-32888

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

7.3CVSS7.1AI score0.0016EPSS
Exploits0References2
CVE
CVEadded 2025/05/01 12:0 a.m.46 views

CVE-2025-32888

GoTenna Mesh CVE-2025-32888 affects devices running app 5.5.3 with firmware 1.1.12, where the verification token used for sending SMS through a goTenna server is hardcoded in the app. Reported impact indicators show high severity (CVSS v3.1: base score 8.8) with confidentiality, integrity, and av...

8.8CVSS7.3AI score0.0016EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologiesadded 2025/05/01 12:0 a.m.5 views

PT-2025-18688 · Gotenna · Gotenna Mesh

Name of the Vulnerable Software and Affected Versions: goTenna Mesh versions 5.5.3 with firmware 1.1.12 Description: A problem was discovered in goTenna Mesh devices where the verification token used for sending SMS through a goTenna server is hardcoded in the application. This issue affects...

8.8CVSS6.3AI score0.0016EPSS
Exploits0References10
Cvelist
Cvelistadded 2025/05/01 12:0 a.m.12 views

CVE-2025-32888

An issue was discovered on goTenna Mesh devices with app 5.5.3 and firmware 1.1.12. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

7.3CVSS0.0016EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/05/01 12:0 a.m.7 views

CVE-2025-32889

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

7.3CVSS7.3AI score0.0016EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/05/01 12:0 a.m.6 views

PT-2025-18689 · Gotenna · Gotenna

Name of the Vulnerable Software and Affected Versions: goTenna v1 devices with app version 5.5.3 and firmware version 0.25.5 Description: An issue was discovered where the verification token used for sending SMS through a goTenna server is hardcoded in the app. This affects the ability to securel...

8.8CVSS6.4AI score0.0016EPSS
Exploits0References8
Cvelist
Cvelistadded 2025/05/01 12:0 a.m.13 views

CVE-2025-32889

An issue was discovered on goTenna v1 devices with app 5.5.3 and firmware 0.25.5. The verification token used for sending SMS through a goTenna server is hardcoded in the app...

7.3CVSS0.0016EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2025/04/30 6:13 a.m.12 views

CVE-2024-13688

The Admin and Site Enhancements ASE WordPress plugin before 7.6.10 uses a hardcoded password in its Password Protection feature, allowing attacker to bypass the protection offered via a crafted request...

5.3CVSS6.8AI score0.00312EPSS
Exploits1References1
VulnCheck KEV
VulnCheck KEVadded 2025/04/29 12:0 a.m.4 views

VulnCheck KEV: CVE-2021-27162

An issue was discovered on FiberHome HG6245D devices through RP2613. The web daemon contains the hardcoded user / tattoo@home credentials for an ISP...

9.8CVSS5.8AI score0.26847EPSS
Exploits1References1
NVD
NVDadded 2025/04/28 6:15 a.m.11 views

CVE-2024-13688

The Admin and Site Enhancements ASE WordPress plugin before 7.6.10 uses a hardcoded password in its Password Protection feature, allowing attacker to bypass the protection offered via a crafted request...

5.3CVSS0.00312EPSS
Exploits1References1
OSV
OSVadded 2025/04/28 6:15 a.m.2 views

CVE-2024-13688

The Admin and Site Enhancements ASE WordPress plugin before 7.6.10 uses a hardcoded password in its Password Protection feature, allowing attacker to bypass the protection offered via a crafted request...

5.3CVSS5.8AI score0.00312EPSS
Exploits1References1
Positive Technologies
Positive Technologiesadded 2025/04/28 12:0 a.m.3 views

PT-2025-18042 · WordPress · Admin/Site Enhancements (Ase) Wordpress Plugin

Name of the Vulnerable Software and Affected Versions: Admin and Site Enhancements ASE WordPress plugin versions prior to 7.6.10 Description: The issue concerns the use of a hardcoded password in the Password Protection feature of the Admin and Site Enhancements ASE WordPress plugin. This allows ...

5.3CVSS6.1AI score0.00312EPSS
Exploits1References6
RedhatCVE
RedhatCVEadded 2025/04/27 12:8 a.m.19 views

CVE-2025-32985

NETSCOUT nGeniusONE before 6.4.0 b2350 has Hardcoded Credentials that can be obtained from JAR files...

9.8CVSS7AI score0.00389EPSS
Exploits0References1
Rows per page
Query Builder