CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

67 matches found

Positive Technologies•added 2025/12/09 12:0 a.m.•4 views

PT-2025-49779

WBCE CMS is a content management system. Versions 1.6.4 and below use function GenerateRandomPassword to create passwords using PHP's rand. rand is not cryptographically secure, which allows password sequences to be predicted or brute-forced. This can lead to user account compromise or privilege...

9.1CVSS7.2AI score0.0008EPSS

Exploits1References4

Fedora•added 2025/11/06 2:24 a.m.•4 views

[SECURITY] Fedora 42 Update: keepassxc-2.7.10-4.fc42

KeePassXC is a community fork of KeePassX KeePassXC is an application for people with extremely high demands on secure personal data management. KeePassXC saves many different information e.g. user names, passwords, urls, attachemts and comments in one single database. For a better management...

6.8AI score

Exploits0

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2013-4314

Malware in sbrugna...

5CVSS6.1AI score0.00654EPSS

Exploits0References12

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2013-4312

Malware in sbrugna...

5CVSS6.1AI score0.00491EPSS

Exploits0References11

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-4019

Malware in sbrugna...

8.8CVSS8.6AI score0.00703EPSS

Exploits1References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-38791

Malicious code in bioql PyPI...

2.7CVSS3.9AI score0.00144EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•8 views

EUVD-2022-0193

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00385EPSS

Exploits0References5

Tenable Nessus•added 2025/08/27 12:0 a.m.•2 views

Linux Distros Unpatched Vulnerability : CVE-2017-18021

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - It was discovered that QtPass before 1.2.1, when using the built-in password generator, generates possibly predictable and enumerable passwords. This only appli...

9.8CVSS8.2AI score0.00576EPSS

Exploits1References2

OSV•added 2025/06/30 11:15 p.m.•1 views

CVE-2025-6932

A vulnerability, which was classified as problematic, was found in D-Link DCS-7517 up to 2.02.0. This affects the function gFnGenPassForQlync of the file /bin/httpd of the component Qlync Password Generation Handler. The manipulation leads to use of hard-coded password. It is possible to initiate...

6.3CVSS4.4AI score0.00341EPSS

Exploits1References5

RedhatCVE•added 2025/05/22 10:0 p.m.•6 views

CVE-2022-23472

Passeo is an open source python password generator. Versions prior to 1.0.5 rely on the python random library for random value selection. The python random library warns that it should not be used for security purposes due to its reliance on a non-cryptographically secure random number generator...

7.5CVSS6.8AI score0.00385EPSS

Exploits0References1

SUSE CVE•added 2023/02/15 5:35 a.m.•2 views

SUSE CVE-2013-4440

Password Generator aka Pwgen before 2.07 generates weak non-tty passwords, which makes it easier for context-dependent attackers to guess the password via a brute-force attack...

5CVSS6.9AI score0.00491EPSS

Exploits0References3

NVD•added 2022/12/06 6:15 p.m.•6 views

CVE-2022-23472

7.5CVSS0.00385EPSS

Exploits0References3

OSV•added 2022/12/06 6:15 p.m.•17 views

PYSEC-2022-42997

7.5CVSS6.9AI score0.00385EPSS

Exploits0References3

PyPA•added 2022/12/06 6:15 p.m.•6 views

PYSEC-2022-42997

7.5CVSS6.8AI score0.00385EPSS

Exploits0References3Affected Software1

Prion•added 2022/12/06 6:15 p.m.•14 views

Design/Logic Flaw

5CVSS7.5AI score0.00385EPSS

Exploits0References3Affected Software1

CVE•added 2022/12/06 5:18 p.m.•101 views

CVE-2022-23472

Passeo (open source Python password generator) before v1.0.5 uses the Python random module for value generation, which is non-cryptographically secure. This may allow a motivated attacker to guess generated passwords. The issue is addressed in v1.0.5; upgrade to that version. No public workaround...

7.5CVSS6.4AI score0.00385EPSS

Exploits0References3Affected Software1

Cvelist•added 2022/12/06 5:18 p.m.•20 views

CVE-2022-23472 Use of insecure random number generator in Passeo

5.9CVSS7.7AI score0.00385EPSS

Exploits0References3

OSV•added 2022/12/06 5:18 p.m.•17 views

CVE-2022-23472 Use of insecure random number generator in Passeo

5.9CVSS7.5AI score0.00385EPSS

Exploits0References5

CNNVD•added 2022/12/06 12:0 a.m.•1 views

Passeo 安全特征问题漏洞

Passeo is a Python password generator by the individual developer Arjun Sharda. A security signature issue vulnerability exists in versions of Passeo prior to 1.0.5 that stems from a reliance on the python random library for random value selection, which relies on a non-cryptographically secure...

7.5CVSS7.2AI score0.00385EPSS

Exploits0References4

Positive Technologies•added 2022/12/06 12:0 a.m.•5 views

PT-2022-16013 · Python · Random +1

Name of the Vulnerable Software and Affected Versions: Passeo versions prior to 1.0.5 Description: Passeo is an open source python password generator that relies on the python random library for random value selection in versions prior to 1.0.5. The python random library is not suitable for...

8.2CVSS7.5AI score0.00385EPSS

Exploits0References10

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by