13 matches found
EUVD-2021-18629
Malware in sbrugna...
EUVD-2007-6513
Malware in sbrugna...
EUVD-2005-0289
Malware in sbrugna...
EUVD-2006-0691
Malware in sbrugna...
EUVD-2022-27091
Malicious code in bioql PyPI...
EUVD-2025-10990
Malicious code in bioql PyPI...
CVE-2025-46389
CWE-620: Unverified Password Change...
CVE-2021-25970
Camaleon CMS 0.1.7 to 2.6.0 doesn’t terminate the active session of the users, even after the admin changes the user’s password. A user that was already logged in, will still have access to the application even after the password was changed...
CVE-2018-20882
cPanel before 74.0.8 allows arbitrary file-write operations in the context of the root account during WHM Force Password Change SEC-447...
CVE-2025-24949
In JotUrl 2.0, is possible to bypass security requirements during the password change process...
BIT-ARANGODB-2021-25940 ArangoDB - Insufficient Session Expiration after Password Change
In ArangoDB, versions v3.7.6 through v3.8.3 are vulnerable to Insufficient Session Expiration. When a user’s password is changed by the administrator, the session isn’t invalidated, allowing a malicious user to still be logged in and perform arbitrary actions within the system...
linksys wrt54gl firmware 4.30.15 build 2 - Multiple Vulnerabilities
Device Name: Linksys WRT54GL v1.1 Vendor: Linksys/Cisco ============ Vulnerable Firmware Releases: ============ Firmware Version: 4.30.15 build 2, 01/20/2011 ============ Device Description: ============ The Router lets you access the Internet via a wireless connection, broadcast at up to 54 Mbps...
CVE-1999-0394
DPEC Online Courseware allows an attacker to change another user's password without knowing the original password...