Lucene search
+L

9 matches found

euvd
euvd
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-42807

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.00676EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2024/06/06 5:46 p.m.13 views

CVE-2024-5277 Weak Password Recovery Mechanism in lunary-ai/lunary

In lunary-ai/lunary version 1.2.4, a vulnerability exists in the password recovery mechanism where the reset password token is not invalidated after use. This allows an attacker who compromises the recovery token to repeatedly change the password of a victim's account. The issue lies in the...

6.4CVSS6.9AI score0.00353EPSS
Exploits1References1
cvelist
cvelist
added 2023/10/29 12:0 a.m.32 views

CVE-2023-5840 Weak Password Recovery Mechanism for Forgotten Password in linkstackorg/linkstack

Weak Password Recovery Mechanism for Forgotten Password in GitHub repository linkstackorg/linkstack prior to v4.2.9...

6.5CVSS9AI score0.00674EPSS
Exploits1References2
ptsecurity
ptsecurity
added 2021/12/15 12:0 a.m.7 views

PT-2021-11: Possibility to access file 00000001.SYP with file password mechanism enabled in the FX5U(C) CPU and FX5UJ CPU modules

The vulnerability of the FX5UC CPU and FX5UJ CPU modules of Mitsubishi Electric FA products is associated with the storage of sensitive information in open form. Exploiting the vulnerability may allow an attacker, provided that the file password mechanism is enabled, to gain access to file...

9.1CVSS9.3AI score0.01318EPSS
Exploits0
prion
prion
added 2020/03/23 9:15 p.m.17 views

Design/Logic Flaw

In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and prior and Marine Observer Pro Android App, the software contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak...

5CVSS7.9AI score0.01132EPSS
Exploits0References1Affected Software2
nvd
nvd
added 2020/03/23 8:15 p.m.21 views

CVE-2019-6560

In Auto-Maskin RP210E Versions 3.7 and prior, DCU210E Versions 3.7 and prior and Marine Observer Pro Android App, the software contains a mechanism for users to recover or change their passwords without knowing the original password, but the mechanism is weak...

9.1CVSS9.2AI score0.01102EPSS
Exploits0References1
prion
prion
added 2017/03/03 3:59 p.m.15 views

Session fixation

Session fixation vulnerability in the forgot password mechanism in Revive Adserver before 4.0.1, when setting a new password, allows remote attackers to hijack web sessions via the session ID...

5.5CVSS5.9AI score0.01167EPSS
Exploits0References3Affected Software1
thn
thn
added 2016/01/26 4:41 a.m.12 views

Password Security — Who's to Blame for Weak Passwords? Users, Really?

The majority of Internet users are vulnerable to cyber threats because of their own weaknesses in setting up a strong password. But, are end-users completely responsible for choosing weak passwords? Give a thought. Recently we wrote an article revealing the list of Worst Passwords of 2015 that...

7.3AI score
Exploits0
cvelist
cvelist
added 2001/04/04 4:0 a.m.22 views

CVE-2001-0315

The locking feature in mIRC 5.7 allows local users to bypass the password mechanism by modifying the LockOptions registry key...

6.4AI score0.01126EPSS
Exploits0References2
Rows per page
Query Builder