Lucene search
+L

5 matches found

NVD
NVD
added 2025/08/21 4:15 p.m.18 views

CVE-2025-52395

An issue in Roadcute API v.1 allows a remote attacker to execute arbitrary code via the application exposing a password reset API endpoint that fails to validate the identity of the requester properly...

9.8CVSS0.00523EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 7:17 a.m.15 views

CVE-2024-8794

The BA Book Everything plugin for WordPress is vulnerable to arbitrary password reset in all versions up to, and including, 1.6.20. This is due to the resetuserpassword function not verifying a user's identity prior to setting a password. This makes it possible for unauthenticated attackers to...

5.3CVSS7.4AI score0.00435EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/11/23 4:15 p.m.2 views

CVE-2021-37029

There is an Identity verification vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may affect service availability...

5.3CVSS6.1AI score0.00645EPSS
Exploits0References2Affected Software2
OSV
OSV
added 2021/03/17 9:15 a.m.2 views

CVE-2021-22860

EIC e-document system does not perform completed identity verification for sorting and filtering personnel data. The vulnerability allows remote attacker to obtain users’ credential information without logging in the system, and further acquire the privileged permissions and execute arbitrary...

9.8CVSS7.5AI score0.02558EPSS
Exploits0References3
OSV
OSV
added 2020/09/11 1:15 p.m.4 views

CVE-2020-16222

In Patient Information Center iX PICiX Version B.02, C.02, C.03, and PerformanceBridge Focal Point Version A.01, when an actor claims to have a given identity, the software does not prove or insufficiently proves the claim is correct...

8.8CVSS5.8AI score0.00553EPSS
Exploits0References2
Rows per page
Query Builder