5 matches found
CVE-2025-68621
Trilium Notes is an open-source, cross-platform hierarchical note taking application with focus on building large personal knowledge bases. Prior to 0.101.0, a critical timing attack vulnerability in Trilium's sync authentication endpoint allows unauthenticated remote attackers to recover HMAC...
EUVD-2019-13588
Malware in sbrugna...
NTP Timeroast
Windows authenticates NTP requests by calculating the message digest using the NT hash followed by the first 48 bytes of the NTP message all fields preceding the key ID. An attacker can abuse this to recover hashes that can be cracked offline for machine and trust accounts. The attacker must know...
D-Link DVG-3104MS 信任管理问题漏洞
A security vulnerability exists in D-Link DVG-3104MS, a gateway from D-Link, Taiwan, China, due to the fact that D-Link DVG-3104MS versions 1.0.2.0.3, 1.0.2.0.4 and 1.0.2.0.4E contain " /etc/passwd" file that does not record hard-coded credentials for user accounts. An attacker could exploit this...
phpWebThings <= 1.5.2 MD5 Hash recovery/file disclosure remote vulnerabilities-vulnerability warning-the black bar safety net
phpWebThings = 1.5.2 MD5 Hash recovery/file disclosure remote vulnerabilities Note: 1, regardless of the php. ini how to set this vulnerability are effective; 2, The wtconfig.php contains the mysql login Brief description: phpWebThings including one that allows an attacker to executeSQL...