Lucene search
K

30 matches found

OSV
OSV
added 2023/02/14 10:43 p.m.4 views

MGASA-2023-0049 Updated phpmyadmin packages fix security vulnerability

Security fix for an XSS vulnerability in the drag-and-drop upload functionality PMASA-2023-01 Additional bugfixes including - issue 17506 Fix error when configuring 2FA without XMLWriter or Imagick issue 17519 Fix Export pages not working in certain conditions issue 17121 Fix passwordhash functio...

6.4AI score
Exploits0References3
OSV
OSV
added 2022/09/23 11:4 a.m.3 views

OESA-2022-1945 python-pip security update

pip is the package installer for Python. You can use pip to install packages from the Python Package Index and other indexes. %global bashcompdir %b=$pkg-config --variable=completionsdir bash-completion 2/dev/null; echo $b:-/bashcompletion.d Name: python-pip Version: 21.3.1 Release: 1 Summary: A...

7.5CVSS7AI score0.12826EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2022/09/06 8:45 p.m.4 views

CVE-2022-36072 SilverwareGames.io used == for hashing instead of ===

SilverwareGames.io is a social network for users to play video games online. In version 1.1.8 and prior, due to an unobvious feature of PHP, hashes generated by built-in functions and starting with the 0e symbols were being handled as zero multiplied with the e number. Therefore, the hash value w...

5.9CVSS5.7AI score0.0048EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/05/12 12:0 a.m.11 views

PT-2022-19914 · Jetbrains · Jetbrains Ktor Native

Name of the Vulnerable Software and Affected Versions: JetBrains Ktor Native version 2.0.0 Description: The SHA1 implementation was returning the same value, indicating a potential issue with the hashing function. This issue was resolved in a later version. Recommendations: For version 2.0.0,...

8.7CVSS5AI score0.0083EPSS
Exploits0References6
OSV
OSV
added 2021/07/10 4:46 p.m.2 views

OPENSUSE-SU-2021:2136-1 Security update for cryptctl

This update for cryptctl fixes the following issues: Update to version 2.4: - CVE-2019-18906: Client side password hashing was equivalent to clear text password storage bsc1186226 - First step to use plain text password instead of hashed password. - Move repository into the SUSE github organizati...

9.8CVSS9.8AI score0.01111EPSS
Exploits0References3
OSV
OSV
added 2021/03/18 6:15 p.m.3 views

CVE-2020-14516

In Rockwell Automation FactoryTalk Services Platform Versions 6.10.00 and 6.11.00, there is an issue with the implementation of the SHA-256 hashing algorithm with FactoryTalk Services Platform that prevents the user password from being hashed properly...

10CVSS7.3AI score0.04095EPSS
Exploits0References1
OSV
OSV
added 2021/03/10 6:15 p.m.3 views

CVE-2020-35221

The hashing algorithm implemented for NSDP password authentication on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was found to be insecure, allowing attackers with access to a network capture to quickly generate multiple collisions to generate valid passwords, or infer some parts of the original...

8.8CVSS7.2AI score0.0047EPSS
Exploits0References1
OSV
OSV
added 2020/10/12 1:15 p.m.3 views

CVE-2020-4778

IBM Curam Social Program Management 7.0.9 and 7.0.10 uses MD5 algorithm for hashing token in a single instance which less safe than default SHA-256 cryptographic algorithm used throughout the Cúram application. IBM X-Force ID: 189156...

7.5CVSS5.8AI score0.00792EPSS
Exploits0References2
OSV
OSV
added 2015/04/13 2:59 p.m.4 views

CVE-2015-2936

MediaWiki 1.24.x before 1.24.2, when using PBKDF2 for password hashing, allows remote attackers to cause a denial of service CPU consumption via a long password...

6.6AI score
Exploits0References8
OSV
OSV
added 2015/04/13 2:59 p.m.1 views

DEBIAN-CVE-2015-2936

MediaWiki 1.24.x before 1.24.2, when using PBKDF2 for password hashing, allows remote attackers to cause a denial of service CPU consumption via a long password...

7.1CVSS6.8AI score0.0271EPSS
Exploits0References1
Rows per page
Query Builder