CVE-2025-68718

KAYSUS KS-WR1200 routers with firmware 107 expose SSH and TELNET services on the LAN interface with hardcoded root credentials root:12345678. The administrator cannot disable these services or change the hardcoded password. Changing the management GUI password does not affect SSH/TELNET...

CVE-2025-13613

The Elated Membership plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 1.2. This is due to the plugin not properly logging in a user with the data that was previously verified through the 'eltdfmembershipcheckfacebookuser' and the...

PT-2024-1570

Name of the Vulnerable Software and Affected Versions TP-Link products affected versions not specified Description The issue allows a network-adjacent unauthenticated attacker with access to the product to execute arbitrary OS commands. The affected device, with the initial configuration, allows...

Vulnerability fixed in TeamViewer

A vulnerability has been fixed in TeamViewer. The vulnerability allows an unauthenticated remote malicious party to opportunity to cause TeamViewer to send out an NTLM request. The malicious party to do this must induce the victim to visit a rogue website. The NTLM request can be captured by the...

Linux: System Information in /etc/issue.net

/etc/issue.net is a text file which contains a message or system identification to be printed before the login prompt for users who connect from the network. Copyright C 2020 Greenbone Networks GmbH SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it...

Receiver 4.9 - Receiver configured with SSON constantly prompting for login when connected to external network

Citrix receiver for Windows 4.9 on Windows 10 client is constantly prompting for username and password when users are connecting from external network. This issue does not happen on Windows 7 with an older Citrix receiver installed. Citrix receiver functions normally when the client is connected ...

通达OA外网登陆绕过短信验证

简要描述： 外网登陆可绕过手机验证码 详细说明： http://外网网址/general/ 此处登陆需要获取手机验证码 http://外网网址/pda/ 但此处登陆无需验证码，登陆后可以切换回/general/目录正常访问。 漏洞证明：...

THC-HYDRA 7.2 - Fast and Flexible network login Bruteforce Tool Updated

THC-HYDRA 7.2 - Fast and Flexible network login Bruteforce Tool Updated One of the most famous network logon cracker – THC-HYDRA 7.2 get latest Update. Hydra is a parallized login cracker which supports numerous protocols to attack. New modulesare easy to add, beside that, it is flexible and very...

SQL SERVER Database Password vulnerability-vulnerability warning-the black bar safety net

Track a bit the SQL SERVER Database Server login process, and found that the password calculation is very vulnerable, a SQL SERVER Database Password vulnerability embodied in two aspects: 1, A network login when the password encryption algorithm 2, The database storage of the password encryption...