Lucene search
+L

4 matches found

OSV
OSV
added 2026/06/05 7:19 p.m.4 views

CVE-2026-46493 haxtheweb/haxcms-php uses insecure method for generating salt

HAX CMS helps manage microsite universe with PHP or NodeJs backends. Versions prior to 26.0.1 use uniqid for generating salts, which is unsuitable. Version 26.0.1 fixes the issue...

7.5CVSS5.9AI score0.00288EPSS
Exploits0References5
ATTACKERKB
ATTACKERKB
added 2026/05/20 10:8 p.m.9 views

CVE-2026-47372

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

5.8AI score0.00397EPSS
Exploits0References3
OpenVAS
OpenVAS
added 2016/06/07 12:0 a.m.41 views

MariaDB 'COM_CHANGE_USER' Command Insecure Salt Generation Security Bypass Vulnerability - Linux

MariaDB is prone to a security bypass vulnerability. SPDX-FileCopyrightText: 2016 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:mariadb:mariadb";...

4CVSS7.9AI score0.11413EPSS
Exploits2References4
Exploit DB
Exploit DB
added 2012/12/06 12:0 a.m.238 views

Oracle MySQL / MariaDB - Insecure Salt Generation Security Bypass

source: https://www.securityfocus.com/bid/56837/info MySQL and MariaDB are prone to a security-bypass weakness. An attacker may be able to exploit this issue to aid in brute-force attacks; other attacks may also be possible. use Net::MySQL; $|=1; my $mysql = Net::MySQL-new hostname = '192.168.2.3...

7.4AI score
Exploits0
Rows per page
Query Builder