Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

4 matches found

Huntr
Huntradded 2021/10/01 5:5 p.m.9 views

Use of a Broken or Risky Cryptographic Algorithm in livehelperchat/livehelperchat

Description livehelperchat uses cryptographically insecure functions microtime, mtrand and even rand to generate sensitive information. Proof of Concept None provided, see the PHP documentation that specifies the cryptographic insecurity of the above functions. Impact This vulnerability is capabl...

1.6AI score
Exploits0
Veracode
Veracodeadded 2021/08/13 3:38 p.m.30 views

Insecure Cryptographic Function

Lasso has insecure cryptographic functions. The vulnerability exists due to the lack of sanitization in the modauthmellon...

7.5CVSS2.4AI score0.00639EPSS
Exploits0References13Affected Software1
Veracode
Veracodeadded 2021/04/29 12:55 p.m.15 views

Insecure Cryptographic Functions

bareos is uses Insecure Cryptographic Functions. The An attacker is able to replay the Bareos director's cram-md5 challenge to the director itself leading to the director responding to the replayed challenge...

6.8CVSS1.8AI score0.00184EPSS
Exploits0References4Affected Software1
Veracode
Veracodeadded 2019/08/29 5:58 a.m.13 views

Authorization Bypass

graphql-shield is vulnerable to authorization bypass. There is a flaw in rule setting for nocache option which uses keys generated from insecure cryptographic functions, allowing an attacker to incorrectly cache rules and access information via key collision...

4.6AI score
Exploits0
Rows per page
Query Builder