Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-0777

Malicious code in bioql PyPI...

8.1CVSS8AI score0.00324EPSS
Exploits0References3
OSV
OSV
added 2024/02/20 12:31 p.m.3 views

GHSA-43H9-P3J4-39HM Liferay Portal defaults to a low work factor for the default password hashing algorithm

The default password hashing algorithm PBKDF2-HMAC-SHA1 in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and Liferay DXP 7.4 before update 16, 7.3 before update 4, 7.2 before fix pack 17, and older unsupported versions defaults to a low work factor, which allows attackers...

8.1CVSS6.8AI score0.00324EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2024/02/20 12:31 p.m.10 views

Liferay Portal defaults to a low work factor for the default password hashing algorithm

The default password hashing algorithm PBKDF2-HMAC-SHA1 in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and Liferay DXP 7.4 before update 16, 7.3 before update 4, 7.2 before fix pack 17, and older unsupported versions defaults to a low work factor, which allows attackers...

8.1CVSS7.2AI score0.00324EPSS
Exploits0References3Affected Software3
NVD
NVD
added 2024/02/20 10:15 a.m.21 views

CVE-2024-25607

The default password hashing algorithm PBKDF2-HMAC-SHA1 in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and Liferay DXP 7.4 before update 16, 7.3 before update 4, 7.2 before fix pack 17, and older unsupported versions defaults to a low work factor, which allows attackers...

8.1CVSS8.1AI score0.00324EPSS
Exploits0References1
CVE
CVE
added 2024/02/20 9:17 a.m.73 views

CVE-2024-25607

The CVE-2024-25607 entry affects Liferay Portal 7.2.0–7.4.3.15 and older unsupported versions, and Liferay DXP shown to use PBKDF2-HMAC-SHA1 with a low work factor. This weak default hashing enables attackers to crack password hashes more quickly, posing confidentiality risk. Affected components ...

8.1CVSS8AI score0.00324EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2024/02/20 9:17 a.m.28 views

CVE-2024-25607

The default password hashing algorithm PBKDF2-HMAC-SHA1 in Liferay Portal 7.2.0 through 7.4.3.15, and older unsupported versions, and Liferay DXP 7.4 before update 16, 7.3 before update 4, 7.2 before fix pack 17, and older unsupported versions defaults to a low work factor, which allows attackers...

8.1CVSS8.3AI score0.00324EPSS
Exploits0References1
Metasploit
Metasploit
added 2019/05/31 4:18 p.m.77 views

Password Cracker: Webapps

This module uses John the Ripper or Hashcat to identify weak passwords that have been acquired from various web applications. Atlassian uses PBKDF2-HMAC-SHA1 which is 12001 in hashcat. PHPass uses phpass which is 400 in hashcat. Mediawiki is MD5 based and is 3711 in hashcat. Apache Superset, some...

7.4AI score
Exploits0
Kitploit
Kitploit
added 2018/01/03 9:0 p.m.29 views

iOSRestrictionBruteForce - Crack iOS Restriction Passcodes with Python

This version of the application is written with Python programming language,which is used to crack the Restriction PassCode of iphone/ipad. Brute Force 1. Get the Base64 key and salt from the backup file in Computer. 2. Decode the Base64 key and salt. 3. Try from 1 to 9999 to with the...

7.2AI score
Exploits0References1
Rows per page
Query Builder