CVE-2023-31412

The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it could lead to collision attacks and the potential retrieval of the password...

CVE-1999-0900

Buffer overflow in rpc.yppasswdd allows a local user to gain privileges via MD5 hash generation...

EUVD-1999-0881

Malware in sbrugna...

EUVD-2019-5259

Malware in sbrugna...

EUVD-2023-35723

Malicious code in bioql PyPI...

CVE-2019-14001

Wrong public key usage from existing oemkeystore for hash generation in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905,...

DEBIAN-CVE-2024-57982

In the Linux kernel, the following vulnerability has been resolved: xfrm: state: fix out-of-bounds read during lookup lookup and resize can run in parallel. The xfrmstatehashgeneration seqlock ensures a retry, but the hash functions can observe a hmask value that is too large for the new hlist...

CVE-2023-31412

The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it could lead to collision attacks and the potential retrieval of the password...

CVE-2023-31412

The LMS5xx uses weak hash generation methods, resulting in the creation of insecure hashs. If an attacker manages to retrieve the hash, it could lead to collision attacks and the potential retrieval of the password...

GHSA-3276-P9F2-8Q89 TYPO3 is vulnerable to insecure randomness during hash generation in forgot password function

TYPO3 before 4.3.4 and 4.4.x before 4.4.1 contains insecure randomness during generation of a hash with the "forgot password" function...

HackTools

This is a web browser extension for penetration testing, called HackTools. It is a comprehensive toolset for web application security testing, providing various features such as: Dynamic shell generation PHP, Bash, Ruby, Python, Perl, Netcat XSS payload generation Common SQL injection payloads...

HackTools

This is a browser extension for penetration testing, called HackTools. It is a comprehensive tool for web application penetration testing, providing various features such as dynamic shell generation, XSS payload, SQL injection payload, local file inclusion payloads, base64 encoding/decoding, hash...

CVE-2019-14001

Wrong public key usage from existing oemkeystore for hash generation in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905,...

Design/Logic Flaw

Wrong public key usage from existing oemkeystore for hash generation in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905,...

CVE-2019-14001

CVE-2019-14001 affects Qualcomm Snapdragon family devices (e.g., Snapdragon Auto, Consumer IOT, Industrial IOT, Mobile, Wearables, and related APQs/SDMs) due to wrong public key usage from the existing OEM keystore when generating hashes. Root cause as described: incorrect handling of public keys...

CVE-2019-14001

Wrong public key usage from existing oemkeystore for hash generation in Snapdragon Auto, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables in APQ8009, APQ8017, APQ8053, APQ8096AU, MDM9206, MDM9207C, MDM9607, MDM9650, MSM8905,...

Epignosis eFront LMS Password Reset authentication bypass vulnerability

Summary A predictable seed vulnerability eixsts in the password reset functionality of Epignosis EfrontPro 5.2.21. By predicting the seed it is possible to generate the correct password reset 1-time token. An attacker can visit the password reset supplying the password reset token to reset the...

CVE-2010-3670

TYPO3 prior to 4.3.4 and 4.4.x prior to 4.4.1 contains insecure randomness during the generation of a hash in the forgot‑password function, enabling potential predictability of hashes as described in multiple sources (GHSA/NVD/CNVD/etc.). The vulnerability affects the forgot-password hashing proc...

openSUSE Security Update : mailman (openSUSE-2019-495)

This update for mailman to version 2.1.27 fixes the following issues : This security issue was fixed : - CVE-2018-0618: Additional protections against injecting scripts into listinfo and error messages pages bsc1099510. These non-security issues were fixed : - The hash generated when...

Hashie - Crack Hashes In A Blink Of An Eye

Hashie is a multi functional tool written in python to deal with hashes. Features Hash cracking. Hash generation. Automatic hash type identification. Supports MD5, SHA1, SHA256, SHA384, SHA512 etc... How to Install and Run in Linux 1 Enter the following command in the terminal to download it. git...