7 matches found
CVE-2025-26199
CloudClassroom-PHP-Project v1.0 is affected by an insecure credential transmission vulnerability. The application transmits passwords over unencrypted HTTP during the login process, exposing sensitive credentials to potential interception by network-based attackers. A remote attacker with access ...
CVE-2025-26199
CloudClassroom-PHP-Project v1.0 is affected by insecure credential transmission: login credentials are sent over HTTP, enabling MitM exposure. A compromised session could allow an attacker to login and potentially trigger administrative actions (e.g., file uploads) leading to remote code executio...
CVE-2020-35138
The MobileIron agents through 2021-03-22 for Android and iOS contain a hardcoded encryption key, used to encrypt the submission of username/password details during the authentication process, as demonstrated by Mobile@Work aka com.mobileiron. The key is in the...
CVE-2020-35138
The MobileIron agents through 2021-03-22 for Android and iOS contain a hardcoded encryption key, used to encrypt the submission of username/password details during the authentication process, as demonstrated by Mobile@Work aka com.mobileiron. The key is in the...
CVE-2013-2672
Brother MFC-9970CDW devices with firmware 0D allow cleartext submission of passwords...
Design/Logic Flaw
Brother MFC-9970CDW devices with firmware 0D allow cleartext submission of passwords...
HTTP login page
This script logs onto a web server through a login page and stores the authentication / session cookie. C Tenable Network Security, Inc. @PREFERENCES@ include"compat.inc"; ifdescription scriptid11149; scriptversion"1.37"; scriptsetattributeattribute:"pluginmodificationdate", value:"2025/09/29";...