Lucene search
K

28 matches found

ATTACKERKB
ATTACKERKB
added 2026/05/18 8:40 a.m.6 views

CVE-2026-6345

Mattermost versions 11.5.x = 11.5.1, 10.11.x = 10.11.13, 11.4.x = 11.4.3 fail prevent disclosure of created user password which allows a malicious attacker to impersonate a user via the use of some of those passwords.. Mattermost Advisory ID: MMSA-2026-00614...

6.5CVSS5.8AI score0.00231EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/12/18 7:20 a.m.16 views

CVE-2025-13498 Download Manager <= 3.3.32 - Missing Authorization to Authenticated (Subscriber+) Media Attachment Password Disclosure

The Download Manager plugin for WordPress is vulnerable to unauthorized access of sensitive information in all versions up to, and including, 3.3.32. This is due to missing authorization and capability checks on the wpdmmediaaccess AJAX action. This makes it possible for authenticated attackers,...

4.3CVSS0.00352EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2022-0510

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.04306EPSS
Exploits1References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-4638

Malicious code in bioql PyPI...

6.3CVSS6.6AI score0.00265EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/08/14 4:41 p.m.33 views

CVE-2024-5916 PAN-OS: Cleartext Exposure of External System Secrets

An information exposure vulnerability in Palo Alto Networks PAN-OS software enables a local system administrator to unintentionally disclose secrets, passwords, and tokens of external systems. A read-only administrator who has access to the config log, can read secrets, passwords, and tokens to...

6CVSS6.3AI score0.00249EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/08/02 12:0 a.m.4 views

FOGProject 安全漏洞

FOGProject is a free open source network computer cloning and management solution from FOGProject Open Source. It can be used to deploy and manage any desktop operating system. A security vulnerability exists in FOGProject version 1.5.10.41.2, which stems from the potential disclosure of AD...

9.3CVSS6.5AI score0.00587EPSS
Exploits1References2
CNNVD
CNNVD
added 2022/06/02 12:0 a.m.4 views

ICT Protege GX和ICT Protege WX 安全漏洞

ICT Protege GX and ICT Protege WX are both products of ICT Corporation.ICT Protege GX is an enterprise-grade integrated access control, intruder detection, and building automation solution with an easy-to-operate, easy-to-integrate, and easy-to-scalable feature set.ICT Protege WX is a game-changi...

4.3CVSS5.2AI score0.00392EPSS
Exploits1References3
Kaspersky
Kaspersky
added 2020/02/11 12:0 a.m.40 views

KLA11669 Multiple vulnerabilities in Mozilla Thunderbird

Multiple vulnerabilities were found in Mozilla Thunderbird. Malicious users can exploit these vulnerabilities to execute arbitrary code, cause denial of service, obtain sensitive information, perform cross-site scripting attack. Below is a complete list of vulnerabilities: 1. A memory corruption...

8.8CVSS8.6AI score0.02274EPSS
Exploits1References3
NVD
NVD
added 2019/10/08 1:15 p.m.30 views

CVE-2019-17106

In Centreon Web through 2.8.29, disclosure of external components' passwords allows authenticated attackers to move laterally to external components...

6.5CVSS6.3AI score0.01067EPSS
Exploits0References3
Cvelist
Cvelist
added 2019/10/08 12:21 p.m.28 views

CVE-2019-17106

In Centreon Web through 2.8.29, disclosure of external components' passwords allows authenticated attackers to move laterally to external components...

6.3AI score0.01067EPSS
Exploits0References3
Prion
Prion
added 2019/09/06 7:15 p.m.17 views

Default configuration

The Airbrake Ruby notifier 4.2.3 for Airbrake mishandles the blacklistkeys configuration option and consequently may disclose passwords to unauthorized actors. This is fixed in 4.2.4 also, 4.2.2 and earlier are unaffected...

5CVSS9.1AI score0.01442EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/21 12:0 a.m.188 views

CVE-2019-13458

CVE-2019-13458 affects Open Ticket Request System (OTRS) and its Community Edition: 7.0.x (up to 7.0.8), 5.0.x (up to 5.0.36) and 6.0.x (up to 6.0.19). An attacker with an agent login and appropriate permissions can abuse OTRS notification tags in templates to disclose hashed user passwords. Publ...

6.5CVSS6.7AI score0.01707EPSS
Exploits0References7Affected Software1
0day.today
0day.today
added 2019/05/13 12:0 a.m.55 views

SOCA Access Control System 180612 - Information Disclosure

Exploit for php platform in category web applications SOCA Access Control System 180612 Information Disclosure Vendor: SOCA Technology Co., Ltd Product web page: http://www.socatech.com Affected version: 180612, 170000 and 141007 Summary: The company's products include proximity and fingerprint...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2017/07/12 3:12 p.m.197 views

Shodanwave - Explore & Obtain Information from Netwave IP Camera

Shodanwave is a tool for exploring and obtaining information from cameras specifically Netwave IP Camera. The tool uses a search engine called shodan that makes it easy to search for cameras online but not only that. Hack network cameras around the world, Very fun! What does the tool to? Look, a...

7AI score
Exploits0References1
0day.today
0day.today
added 2015/02/10 12:0 a.m.45 views

LG DVR LE6016D - Unauthenticated Remote Users/Passwords Disclosure Exploit

Exploit for hardware platform in category web applications !/usr/bin/perl LG DVR LE6016D unauthenticated remote users/passwords disclosure exploit Copyright 2015 c Todor Donev http://www.ethical-hacker.org/ Digital video recorder DVR surveillance is the use of cameras, often hidden or concealed,...

7.1AI score
Exploits0
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.13 views

Morpheus <= 4.8 - Local Chat Passwords Disclosure Exploit

No description provided by source. / Morpheus 4.8 Local Chat Passwords Disclosure Exploit by Kozan Application: Morpheus 4.8 and probably prior versions Vendor: Streamcast Networks - www.streamcastnetworks.com Vulnerable Description: Morpheus 4.8 discloses chat passwords to local users. Discovere...

7.1AI score
Exploits0
Prion
Prion
added 2014/03/06 11:55 a.m.21 views

Information disclosure

The Connect client in IBM Sametime 8.5.1, 8.5.1.1, 8.5.1.2, 8.5.2, 8.5.2.1, 9.0, and 9.0.0.1, when a certain com.ibm.collaboration.realtime.telephony..level setting is used, logs cleartext passwords during Audio/Video chat sessions, which allows local users to obtain sensitive information by...

1.9CVSS6AI score0.00341EPSS
Exploits2References2Affected Software1
Packet Storm
Packet Storm
added 2009/04/23 12:0 a.m.32 views

Dream FTP Server 1.02 File Disclosure

!/usr/bin/perl -w This Bug Similar to others found By My Friend : Stack = so special Thanx So You Can Exploit Arbitrary File Disclosure From The Server == You can use Stack's Exploit To do That But This Exploit i will get Users & Passwords Of The applicatin From : users.dat : C:\Program...

7.4AI score
Exploits0
Exploit DB
Exploit DB
added 2009/04/23 12:0 a.m.39 views

BolinTech DreamFTP Server 1.02 - &#039;users.dat&#039; Arbitrary File Disclosure

!/usr/bin/perl -w This Bug Similar to others found By My Friend : Stack = so special Thanx So You Can Exploit Arbitrary File Disclosure From The Server == You can use Stack's Exploit To do That But This Exploit i will get Users & Passwords Of The applicatin From : users.dat : C:\Program...

7.4AI score
Exploits0
seebug.org
seebug.org
added 2008/07/17 12:0 a.m.16 views

PeerFTP 5 Local Password Disclosure Exploit

No description provided by source. / PeerFTP5 Local Exploit by Kozan Application: PeerFTP5 Vendor: Acute Websight Incorporated http://www.acutewebsight.com/peerftp5.htm Vulnerable Description: PeerFTP5 discloses passwords to local users. Coded by: Kozan Credits to ATmaCA Web : www.netmagister.com...

7.1AI score
Exploits0
Rows per page
Query Builder