10 matches found
EUVD-2025-24587
Malicious code in bioql PyPI...
CVE-2025-48952 NetAlertX has Password Bypass Vulnerability due to Loose Comparison in PHP
NetAlertX is a network, presence scanner, and alert framework. Prior to version 25.6.7, a vulnerability in the authentication logic allows users to bypass password verification using SHA-256 magic hashes, due to loose comparison in PHP. In vulnerable versions of the application, a password...
CVE-2020-23361
phpList 3.5.3 allows type juggling for login bypass because == is used instead of === for password hashes, which mishandles hashes that begin with 0e followed by exclusively numerical characters...
Login Bypass Vulnerability in OfficeAnywhere 2017 Edition Web Intelligent Office System
OfficeAnywhere2017 version of the network intelligent office system is a general-purpose network office software for enterprises and institutions, incorporating the rich experience and advanced technology of Tongda Technology's long-term engagement in the development of management software, the...
Login Bypass Vulnerability in Charging Pile Operation Management System of Shenzhen Crestec Technology Co.
Shenzhen Crestec Technology Co., Ltd. is a technology enterprise engaged in the research, development, manufacturing and sales of UPS uninterruptible power supply, server room integration, maintenance-free lead-acid batteries, inverter power supply. A login bypass vulnerability exists in the...
ASUSTOR NAS ADM Login Bypass Vulnerability
ASUSTOR Data Master ADM is a dedicated operating system for ASUSTOR NAS with a tablet-like graphical interface comparable to a zero learning curve. A login bypass vulnerability exists in ASUSTOR NAS ADM. The vulnerability exists in the web interface of the ASUSTOR NAS, where /initial/index.cgi is...
ZYCHCMS V04 Login Authentication Bypass Vulnerability in /admin/login.asp File
ZYCHCMS is an enterprise website management system. A login authentication bypass vulnerability exists in the /admin/login.asp file in ZYCHCMS V04. The vulnerability allows attackers to bypass authentication to enter the backend and obtain sensitive information...
AnotherPHPBook (APB) 1.3.0 (Auth Bypass) - SQL Injection Vulnerability
No description provided by source. APBook 1.3.0 Login Bypass SQL Injection Vulnerability AUTHOR: n3w7u Download: www.clanscripte.net/main.php?content=download&do=dl&dlid=81 Dorks: inurl:apbook/index.php or AnotherPHPBook APB v.1.3.0 © 2001 by Stephan Baumeister zap Exploit:...
WX Guest Book 1.1.208 SQL Injection / XSS
WX Guest Book 1.1.208 Vulns By learn3r hacker from nepal [email protected] Product name: WX Guestbook 1.1.208 Product vendor: www.webilix.com This product suffers from multiple SQLi and persistent XSS vuln. SQL Search Vuln The search parameters/queries we submit to the search.php are...
AIOCP Login Bypass Vulnerability
i Product Name: AIOCP - All In One Control Panel i Vulnerable Versions: = 1.3.009 i Bug found by: Coloss i Contact: [email protected] i Date: 9.1.2007 i Spec: AIOCP doesn't check the username posted by the client before using this to check authentication, so SQL Injection is possible Example show...