44 matches found
EUVD-2024-17102
Malicious code in bioql PyPI...
EUVD-2024-17101
Malicious code in bioql PyPI...
EUVD-2024-17100
Malicious code in bioql PyPI...
EUVD-2024-17103
Malicious code in bioql PyPI...
The vulnerability of the LaborOfficeFree software for managing shift scheduling and working hours, which stems from the use of pre-installed database records, allows a perpetrator to gain unauthorized access to the application’s backup database.
The vulnerability of the executable files LOFservice.exe and LaborOfficeFree.exe of the LaborOfficeFree software for workforce management and time tracking involves the use of pre-installed database credentials. Exploiting this vulnerability could allow an attacker to gain unauthorized access to...
The vulnerability of the catalog of backup copies of software for shift management and overtime tracking by LaborOfficeFree allows a perpetrator to disclose protected information.
The vulnerability of the backup catalog for LaborOfficeFree software for shift management and overtime tracking is related to lack of access control. Exploiting this vulnerability could allow an attacker to disclose the protected information...
LaborOfficeFree 19.10 - MySQL Root Password Calculator Exploit
Exploit Title: LaborOfficeFree 19.10 MySQL Root Password Calculator - CVE-2024-1346 Exploit Author: Peter Gabaldon - https://pgj11.com/ Vendor Homepage: https://www.laborofficefree.com/ Software Link: https://www.laborofficefree.com/plans Version: 19.10 Tested on: Windows 10 CVE : CVE-2024-1346...
LaborOfficeFree 19.10 - MySQL Root Password Calculator
Exploit Title: LaborOfficeFree 19.10 MySQL Root Password Calculator - CVE-2024-1346 Google Dork: N/A Date: 09/02/2023 Exploit Author: Peter Gabaldon - https://pgj11.com/ Vendor Homepage: https://www.laborofficefree.com/ Software Link: https://www.laborofficefree.com/plans Version: 19.10 Tested on...
The vulnerability of the LaborOfficeFree software for managing shift schedules and working hours, related to weak password requirements, allows a hacker to obtain the root password of the MySQL database.
The vulnerability of the LaborOfficeFree scheduling and working hours management software is related to weak password requirements. Exploiting this vulnerability could allow an attacker to obtain the root password for the MySQL database...
The vulnerability of the LaborOfficeFree software for managing shift schedules and working hours allows a perpetrator to carry out an attack using brute-force methods.
The vulnerability of LaborOfficeFree’s software for scheduling and time management is related to weak password requirements. Exploiting this vulnerability could allow an attacker to execute a brute-force attack...
Exploit for Weak Password Requirements in Laborofficefree
CVE-2024-1346 Weak MySQL database root password in LaborOffice...
CVE-2024-1346
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to calculate the root password of the MySQL database used by LaborOfficeFree using two constants...
CVE-2024-1344
Encrypted database credentials in LaborOfficeFree affecting version 19.10. This vulnerability allows an attacker to read and extract the username and password from the database of 'LOFservice.exe' and 'LaborOfficeFree.exe' located in the '%programfilesx86%\LaborOfficeFree' directory. This user ca...
CVE-2024-1344
Encrypted database credentials in LaborOfficeFree affecting version 19.10. This vulnerability allows an attacker to read and extract the username and password from the database of 'LOFservice.exe' and 'LaborOfficeFree.exe' located in the '%programfilesx86%\LaborOfficeFree' directory. This user ca...
CVE-2024-1343
A weak permission was found in the backup directory in LaborOfficeFree affecting version 19.10. This vulnerability allows any authenticated user to read backup files in the directory '%programfilesx86% LaborOfficeFree BackUp'...
CVE-2024-1345
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to perform a brute force attack and easily discover the root password...
CVE-2024-1345
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to perform a brute force attack and easily discover the root password...
CVE-2024-1343
A weak permission was found in the backup directory in LaborOfficeFree affecting version 19.10. This vulnerability allows any authenticated user to read backup files in the directory '%programfilesx86% LaborOfficeFree BackUp'...
Default credentials
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to calculate the root password of the MySQL database used by LaborOfficeFree using two constants...
Default credentials
Weak MySQL database root password in LaborOfficeFree affects version 19.10. This vulnerability allows an attacker to perform a brute force attack and easily discover the root password...