10 matches found
CVE-2026-7879
Concrete CMS 9.5.0 and earlier is affected by a vulnerability in submit_password() within concrete/controllers/single_page/download_file.php that permits unauthorized access to files. The issue arises because downloading permission-restricted files bypasses the view_file permission check; files w...
CVE-2025-46174
Ruoyi v4.8.0 vulnerable to Incorrect Access Control. There is a missing checkUserDataScope permission check in the resetPwd Method of SysUserController.java...
PT-2025-48150
Name of the Vulnerable Software and Affected Versions Ruoyi version 4.8.0 Description The software contains an incorrect access control issue. Specifically, a permission check is missing in the resetPwd method of the SysUserController.java file. This allows for potential privilege escalation...
CVE-2025-46174
CVE-2025-46174 affects Ruoyi v4.8.0. The issue is an Incorrect Access Control due to a missing checkUserDataScope permission check in the resetPwd method of SysUserController.java. This could allow unauthorized password resets without proper data-scope validation, enabling potential privilege esc...
CVE-2025-50674
An issue was discovered in the changePassword method in file /usr/share/php/openmediavault/system/user.inc in OpenMediaVault 7.4.17 allowing local authenticated attackers to escalate privileges to root...
CVE-2025-50674
OpenMediaVault 7.4.17 has a local privilege-escalation flaw in the changePassword function (/usr/share/php/openmediavault/system/user.inc). The underlying issue allows a locally authenticated user to elevate privileges to root. CVSSv3.1 base metrics indicate: AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H (...
USN-3944-1 wpa vulnerabilities
It was discovered that wpasupplicant and hostapd were vulnerable to a side channel attack against EAP-pwd. A remote attacker could possibly use this issue to recover certain passwords. CVE-2019-9495 Mathy Vanhoef discovered that wpasupplicant and hostapd incorrectly validated received scalar and...
DEBIAN-CVE-2015-5315
The eappwdprocess function in eappeer/eappwd.c in wpasupplicant 2.x before 2.6 does not validate that the reassembly buffer is large enough for the final fragment when EAP-pwd is enabled in a network configuration profile, which allows remote attackers to cause a denial of service process...
Novell Zenworks ChangePassword XPath Injection Information Disclosure Vulnerability
Novell ZENworks Configuration Management is the configuration management solution within the ZENworks System Gateway tool. A security vulnerability exists in the ChangePassword RPC method of Novell Zenworks, where, through a malformed query, an attacker combines a reference to a system entity wit...
To cope with the MD5 password method Raiders-vulnerability warning-the black bar safety net
...