Lucene search
K

13 matches found

GithubExploit
GithubExploit
added 2026/03/23 6:32 p.m.245 views

Exploit for CVE-2024-2473

CVE-2024-2473 — WPS Hide Login Page Identifier A profession...

5.3CVSS5.8AI score0.01235EPSS
Exploits1
OSV
OSV
added 2023/07/10 4:15 p.m.4 views

CVE-2023-35698

Observable Response Discrepancy in the SICK ICR890-4 could allow a remote attacker to identify valid usernames for the FTP server from the response given during a failed login attempt...

5.3CVSS5.8AI score
Exploits0References3
PyPA
PyPA
added 2023/03/01 5:15 p.m.7 views

PYSEC-2023-52

vantage6 is a privacy preserving federated learning infrastructure for secure insight exchange. vantage6 does not inform the user of wrong username/password combination if the username actually exists. This is an attempt to prevent bots from obtaining usernames. However, if a wrong password is...

6.5CVSS6.9AI score0.00591EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2021/11/03 11:15 a.m.19 views

CVE-2021-33209

An issue was discovered in Fimer Aurora Vision before 2.97.10. The response to a failed login attempt discloses whether the username or password is wrong, helping an attacker to enumerate usernames. This can make a brute-force attack easier...

5.3CVSS0.00735EPSS
Exploits0References2
Prion
Prion
added 2020/02/04 2:15 p.m.15 views

Design/Logic Flaw

webcalendar before 1.2.7 shows the reason for a failed login e.g., "no such user"...

5CVSS7.1AI score0.01621EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2019/12/05 4:15 p.m.14 views

CVE-2019-19007

Intelbras IWR 3000N 1.8.7 devices allow disclosure of the administrator login name and password because v1/system/user is mishandled, a related issue to CVE-2019-17600...

9CVSS8.4AI score0.01625EPSS
Exploits0References1
Cvelist
Cvelist
added 2019/12/05 3:28 p.m.16 views

CVE-2019-19007

Intelbras IWR 3000N 1.8.7 devices allow disclosure of the administrator login name and password because v1/system/user is mishandled, a related issue to CVE-2019-17600...

7.7AI score0.01625EPSS
Exploits0References1
Nextcloud
Nextcloud
added 2019/11/12 12:0 a.m.60 views

Login and token disclosure to other Nextcloud services (NC-SA-2019-017)

Violation of Secure Design Principles in the iOS App 2.23.0 causes the app to leak its login and token to other Nextcloud services when search e.g. for federated users or registering for push notifications...

4CVSS2.5AI score0.01081EPSS
Exploits0Affected Software1
CVE
CVE
added 2019/10/15 1:54 p.m.53 views

CVE-2019-17600

CVE-2019-17600 affects Intelbras IWR 1000N with firmware 1.6.4. The issue is a mishandling of v1/system/user that leads to disclosure of the administrator login name and password. The Red Hat and NVD entries confirm the same vulnerability family; exploitation is referenced in public exploit mater...

10CVSS7.2AI score0.01183EPSS
Exploits1References2Affected Software1
Github Security Blog
Github Security Blog
added 2017/10/24 6:33 p.m.35 views

Local API Login Credentials Disclosure in paratrooper-pingdom

The paratrooper-pingdom gem 1.0.0 for Ruby allows local users to obtain the App-Key, username, and password values by listing the curl process. Vulnerable Code: From: paratrooper-pingdom-1.0.0/lib/paratrooper-pingdom.rb ruby def setupoptions = %xcurl https://api.pingdom.com/api/2.0/checks -X PUT ...

2.1CVSS6.1AI score0.0041EPSS
Exploits1References5Affected Software1
0day.today
0day.today
added 2015/08/10 12:0 a.m.28 views

Froxlor 0.9.33.1 MySQL Login Disclosure Vulnerability

Froxlor server management panel versions 0.9.33.1 and below suffer from a MySQL login information disclosure vulnerability. ------------------------------------------------------------------------------------------ Exploit Title: Froxlor Server Management Panel - MySQL Login Information Disclosur...

6.5AI score
Exploits0
Packet Storm
Packet Storm
added 2015/08/07 12:0 a.m.27 views

Froxlor 0.9.33.1 MySQL Login Disclosure

------------------------------------------------------------------------------------------ Exploit Title: Froxlor Server Management Panel - MySQL Login Information Disclosure Date: Jul 30 2015 Exploit Author: Dustin Dörr Vendor Homepage: https://www.froxlor.org/ Version:...

7.4AI score
Exploits0
0day.today
0day.today
added 2010/02/09 12:0 a.m.22 views

AS3FlexDB Database Login Information Disclosure & Remote SQL Excution

Exploit for unknown platform in category web applications ===================================================================== AS3FlexDB Database Login Information Disclosure & Remote SQL Excution =====================================================================...

7.1AI score
Exploits0
Rows per page
Query Builder