CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

9 matches found

Positive Technologies•added 2025/07/29 12:0 a.m.•3 views

PT-2025-31225 · Tsplus · Tsplus

Name of the Vulnerable Software and Affected Versions: TSplus versions prior to 18.40.6.17 TSplus versions prior to 17.2025.6.27 TSplus versions prior to 16.2025.6.27 Description: Access to the TSplus Remote Access Admin Tool is restricted to administrators unless the "Disable UAC" option is...

4.8CVSS7AI score0.0004EPSS

Exploits0References6

RedhatCVE•added 2025/05/22 7:32 p.m.•5 views

CVE-2021-27935

An issue was discovered in AdGuard before 0.105.2. An attacker able to get the user's cookie is able to bruteforce their password offline, because the hash of the password is stored in the cookie...

7.5CVSS6.8AI score0.00322EPSS

Exploits0References1

CNNVD•added 2025/04/05 12:0 a.m.•2 views

ZendTo 安全漏洞

ZendTo is a web-based file transfer system from ZendTo, Inc. A security vulnerability exists in ZendTo versions prior to 5.04-7 that stems from type obfuscation and could lead to bypassing the authentication of users of an MD5 hash store...

4.8CVSS6.7AI score0.00095EPSS

Exploits0References2

Positive Technologies•added 2023/06/01 12:0 a.m.•3 views

PT-2023-24239 · Starface · Starface

Name of the Vulnerable Software and Affected Versions: STARFACE affected versions not specified Description: The web interface and REST API of STARFACE allow authentication using the SHA512 hash of the password instead of the cleartext password. This practice renders the protection of storing...

8.1CVSS7.4AI score0.13351EPSS

Exploits4References7

Code423n4•added 2023/01/23 12:0 a.m.•9 views

Threat: Replay attack vulnerability

Lines of code Vulnerability details Impact The code does not check for the possibility of a replay attack on the contract, if the same order hash is being used multiple times Proof of Concept A replay attack is a type of attack where an attacker intercepts a valid transaction and resends it...

7.1AI score

Exploits0

CVE•added 2020/10/16 8:31 p.m.•37 views

CVE-2020-1669

CVE-2020-1669 affects Juniper Networks Junos OS on NFX350 devices via the JDM container that stores password hashes in the world-readable /etc/passwd. Root cause: password hashes are readable by local attackers. Impact: local access could enable brute-force decryption of hashes, with confidential...

6.3CVSS6.2AI score0.00051EPSS

Exploits0References1Affected Software1

Hacker One•added 2015/06/06 1:24 a.m.•54 views

VK.com: Уязвимость в Указание мест на фото + фича + хакинг

Для начало прошу прощения за столько много выделенных ТИПОВ ... коротко с помощью уязвимости можно ставить отметку на фото гео лакации любому пользователю Следование этому пожеланию увеличит вероятность получения награды. Сервис, в котором найдена уязвимость. https:/vk.com/alplaces.php...

6.9AI score

Exploits0

myhack58•added 2006/06/18 12:0 a.m.•23 views

Crack MSSQL HASH password-vulnerability warning-the black bar safety net

Original name :Microsoft SQL Server Passwords Cracking the password hashes Original address :http://www.ngssoftware.com/papers/cracking-sql-passwords.pdf Author :David Litchfield [email protected] Term : FreeXploiT Author : ALLyeSNO Date : 2005-3-25 Translation:ALLyeSNO [email protected]...

7.7AI score

Exploits0

Prion•added 2006/03/14 1:6 a.m.•11 views

Improper access control

PHP Upload Center stores password hashes under the web root with insufficient access control, which allows remote attackers to download each password hash via a direct request for the upload/users/USERNAME file...

5CVSS7.5AI score0.00504EPSS

Exploits1References5

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by