CVE-2016-5683

ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQLConfig.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file...

CVE-2016-5683

ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQLConfig.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file...

Hardcoded credentials

ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQLConfig.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file...

CVE-2016-5683

ReadyDesk 9.1 allows local users to determine cleartext SQL Server credentials by reading the SQLConfig.aspx file and decrypting data with a hardcoded key in the ReadyDesk.dll file...

Boxcryptor - Customized SSL, Hardcoded secrets vulnerabilities

HackApp vulnerability scanner discovered that application Boxcryptor published at the 'play' market has multiple vulnerabilities...

CVE-2016-5645

Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote attackers to load arbitrary firmware updates by leveraging knowledge of this community...

CVE-2016-5081

ZModo ZP-NE14-S and ZP-IBH-13W devices have a hardcoded root password, which makes it easier for remote attackers to obtain access via a TELNET session...

Hardcoded credentials

Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote attackers to load arbitrary firmware updates by leveraging knowledge of this community...

Hardcoded credentials

ZModo ZP-NE14-S and ZP-IBH-13W devices have a hardcoded root password, which makes it easier for remote attackers to obtain access via a TELNET session...

CVE-2016-5081

ZModo ZP-NE14-S and ZP-IBH-13W devices have a hardcoded root password, which makes it easier for remote attackers to obtain access via a TELNET session...

CVE-2016-5645

Rockwell Automation MicroLogix 1400 PLC 1766-L32BWA, 1766-L32AWA, 1766-L32BXB, 1766-L32BWAA, 1766-L32AWAA, and 1766-L32BXBA devices have a hardcoded SNMP community, which makes it easier for remote attackers to load arbitrary firmware updates by leveraging knowledge of this community...

CVE-2016-5645

The provided Connected documents confirm a concrete issue: Rockwell Automation MicroLogix 1400 PLCs (models 1766-L32BWA/AWA/BXB/WAA, 1766-L32BXBA etc.) expose an undocumented privileged SNMP community string (“wheel”) alongside standard public/private, granting read/write access. This enables rem...

CVE-2016-5081

The CVE-2016-5081 entry affects ZModo ZP-NE14-S and ZP-IBH-13W devices (DVR/cameras) due to hard-coded credentials that enable root access via an always-on TELNET service. The root cause is use of undocumented hard-coded credentials and TELNET hardening bypass, allowing remote attackers to obtain...

SAP ABAP BASIS 7.4 Hard-Coded Password

Application: SAP DBAP BASIS Versions Affected: SAP DBAP BASIS 7.4 Vendor URL: http://SAP.com Bugs: Hardcoded credentials Sent: 01.02.2016 Reported: 02.02.2016 Vendor response: 02.02.2016 Date of Public Advisory: 10.05.2016 Reference: SAP Security Note 2292487 Author: Vahagn Vardanyan ERPScan...

Silver Stripe CMS: source code security analysis report

Several vulnerabilities were discovered in SilverStripe Limited 'Silver Stripe CMS' software: Incorrect User Input Filtration when Connecting to External Files File System Path Manipulation Using Global Variables Incorrect User Input Filtration when Using the unserialize Function Incorrect Newlin...

NUUO NVRmini 2 and NVRsolo Hardcoded Certificate Vulnerability

The NUUO NVRsolo and NVRmini 2 are both network video recorders from NUUO. A hardcoded certificate vulnerability exists in NUUO NVRmini 2 and NVRsolo versions 1.0.0 through 3.0.0, which stems from a program using hardcoded certificates. The vulnerability can be exploited by an attacker to log int...

Hardcoded credentials

SAP SAPCAR allows local users to change the permissions of arbitrary files and consequently gain privileges via a hard link attack on files extracted from an archive, possibly related to SAP Security Note 2327384...

NUUO NVRmini2 / NVRsolo / Crystal Devices / NETGEAR ReadyNAS Surveillance Application - Multiple Vulnerabilities

Multiple vulnerabilities in NUUO NVRmini2 / NVRsolo / Crystal devices and NETGEAR ReadyNAS Surveillance application Discovered by Pedro Ribeiro [email protected], Agile Information Security http://www.agileinfosec.co.uk/ ==========================================================================...

NUUO NVRmini2 / NVRsolo / Crystal Devices / Netgear ReadyNAS Surveillance Application - Multiple Vul

Exploit for hardware platform in category remote exploits Multiple vulnerabilities in NUUO NVRmini2 / NVRsolo / Crystal devices and NETGEAR ReadyNAS Surveillance application Discovered by Pedro Ribeiro email protected, Agile Information Security http://www.agileinfosec.co.uk/...

NUUO NVRmini2 / NVRsolo / Crystal And NETGEAR ReadyNAS Code Execution

Multiple vulnerabilities in NUUO NVRmini2 / NVRsolo / Crystal devices and NETGEAR ReadyNAS Surveillance application Discovered by Pedro Ribeiro [email protected], Agile Information Security http://www.agileinfosec.co.uk/ ==========================================================================...