41 matches found
EUVD-2021-1501
Malware in sbrugna...
EUVD-2024-46775
Malicious code in bioql PyPI...
CVE-2020-8827
As of v1.5.0, the Argo API does not implement anti-automation measures such as rate limiting, account lockouts, or other anti-bruteforce measures. Attackers can submit an unlimited number of authentication attempts without consequence...
Authentication Bypass
Mattermost is vulnerable to Authentication Bypass. The vulnerability is due to insufficient enforcement of login failure limits due to the failure to lock out LDAP users after repeated unsuccessful login attempts, allowing attackers to trigger external LDAP account lockouts via brute-force attemp...
Microsoft Entra ID Lockouts After MACE App Flags Legit Users
Was your Microsoft Entra ID account locked? Find out about the recent widespread lockouts caused by the new…...
Password Spray Attacks Taking Advantage of Lax MFA
In the first quarter of 2025, Rapid7’s Managed Threat Hunting team observed a significant volume of brute-force password attempts leveraging FastHTTP, a high-performance HTTP server and client library for Go, to automate unauthorized logins via HTTP requests. This rapid volume of credential...
Password Spray Attacks Taking Advantage of Lax MFA
In the first quarter of 2025, Rapid7’s Managed Threat Hunting team observed a significant volume of brute-force password attempts leveraging FastHTTP, a high-performance HTTP server and client library for Go, to automate unauthorized logins via HTTP requests. This rapid volume of credential...
Ektron CMS400.NET Default Password Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Ektron CMS400.NET Default Password Scanner', 'Description' = %q Ektron CMS400.NET is a web content management system based on .NET. This module...
Synology Forget Password User Enumeration Scanner
This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'Synology Forget Password User Enumeration Scanner', 'Description' = %q This module attempts to enumerate users on the Synology NAS by sending GET...
ManageEngine ADAudit Plus < Build 8121 Multiple Vulnerabilities
The version of ManageEngine ADAudit Plus installed on the remote host is prior to build 8121. It is, therefore, affected by multiple vulnerabilities. - Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option...
CVE-2024-5586
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option...
CVE-2024-5586
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option...
CVE-2024-5586
CVE-2024-5586 affects Zohocorp ManageEngine ADAudit Plus
CVE-2024-5586 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option...
CVE-2024-5586 SQL Injection
Zohocorp ManageEngine ADAudit Plus versions below 8121 are vulnerable to the authenticated SQL injection in extranet lockouts report option...
PT-2024-36592 · Zohocorp · Zoho Manageengine Adaudit Plus
Name of the Vulnerable Software and Affected Versions: Zohocorp ManageEngine ADAudit Plus versions below 8121 Description: The issue concerns an authenticated SQL injection vulnerability in the extranet lockouts report option. This vulnerability can be exploited by authenticated users, potentiall...
Large-scale brute-force activity targeting VPNs, SSH services with commonly used login credentials
Cisco Talos would like to acknowledge Anna Bennett and Brandon White of Cisco Talos and Phillip Schafer, Mike Moran, and Becca Lynch of the Duo Security Research team for their research that led to the identification of these attacks. Cisco Talos is actively monitoring a global increase in...
The vulnerability of the microprogrammed protection system for the SEL-451 phase-change relay exists due to insufficient verification of input data. This allows a perpetrator to trigger a malfunction and lock out arbitrary services.
The vulnerability of the microprogrammed protection system for the SEL-451 phase-change relay exists due to insufficient checking of input data. Exploiting this vulnerability can allow an attacker to cause malfunctions and lock out arbitrary services...
Open Web Analytics 1.7.3 Remote Code Execution Exploit
Open Web Analytics OWA versions prior to 1.7.4 allow an unauthenticated remote attacker to obtain sensitive user information, which can be used to gain admin privileges by leveraging cache hashes. class MetasploitModule 'Open Web Analytics 1.7.3 - Remote Code Execution RCE', 'Description' = %q Op...
Lack of brute force protection
Issue Description • A brute-force attack is an attempt to discover a password by systematically trying every possible combination of letters, numbers, and symbols until an attacker discover the one correct combination that works. Steps to Reproduce: '1. First capture login request with BurpSuite,...