Lucene search
K

36 matches found

CNNVD
CNNVD
added 2022/11/15 12:0 a.m.5 views

phpservermon 安全特征问题漏洞

phpservermon is a script that checks to see if your website and server are up and running. A security vulnerability exists in phpservermon that stems from the setUserLoggedIn function of its src/psm/Service/User.php component causing the random number generator to use a predictable algorithm. The...

5.3CVSS5.5AI score0.00769EPSS
Exploits1References5
Cvelist
Cvelist
added 2022/11/15 12:0 a.m.32 views

CVE-2021-4241 phpservermon User.php setUserLoggedIn predictable algorithm in random number generator

A vulnerability, which was classified as problematic, was found in phpservermon. Affected is the function setUserLoggedIn of the file src/psm/Service/User.php. The manipulation leads to use of predictable algorithm in random number generator. The exploit has been disclosed to the public and may b...

2.6CVSS5.6AI score0.00769EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2022/11/15 12:0 a.m.5 views

CVE-2021-4241 phpservermon User.php setUserLoggedIn predictable algorithm in random number generator

A vulnerability, which was classified as problematic, was found in phpservermon. Affected is the function setUserLoggedIn of the file src/psm/Service/User.php. The manipulation leads to use of predictable algorithm in random number generator. The exploit has been disclosed to the public and may b...

2.6CVSS5.7AI score0.00769EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2022/11/15 12:0 a.m.5 views

PT-2022-11592 · Unknown · Phpservermon

Name of the Vulnerable Software and Affected Versions: phpservermon affected versions not specified Description: A problematic issue was found in phpservermon, affecting the generatePasswordResetToken function of the file src/psm/Service/User.php. The manipulation leads to the use of a predictabl...

5.3CVSS5.1AI score0.00803EPSS
Exploits1References10
Vulnrichment
Vulnrichment
added 2022/11/15 12:0 a.m.4 views

CVE-2021-4240 phpservermon User.php generatePasswordResetToken predictable algorithm in random number generator

A vulnerability, which was classified as problematic, was found in phpservermon. This affects the function generatePasswordResetToken of the file src/psm/Service/User.php. The manipulation leads to use of predictable algorithm in random number generator. The exploit has been disclosed to the publ...

2.6CVSS4.2AI score0.00803EPSS
Exploits1References3
CVE
CVE
added 2022/11/15 12:0 a.m.64 views

CVE-2021-4241

The CVE-2021-4241 issue affects phpservermon, specifically the function setUserLoggedIn in src/psm/Service/User.php. The root cause is use of a predictable random-number generator, enabling potential guessing of generated strings. Public exploit details exist, and a patch is identified as bb10a5f...

5.3CVSS4.6AI score0.00769EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2022/11/15 12:0 a.m.85 views

CVE-2021-4240

Summary: CVE-2021-4240 affects phpservermon, specifically the function generatePasswordResetToken in src/psm/Service/User.php. The root cause is use of a predictable algorithm in the random number generator, leading to possible guessing of reset tokens. The vulnerability has public exploit inform...

5.3CVSS4.5AI score0.00803EPSS
Exploits1References3Affected Software1
OSV
OSV
added 2021/12/16 2:26 p.m.14 views

GHSA-8QV8-FQ5W-P966 phpservermon is vulnerable to CRLF Injection

phpservermon is vulnerable to Improper Neutralization of CRLF Sequences...

6.3CVSS5.3AI score0.00843EPSS
Exploits1References4
Github Security Blog
Github Security Blog
added 2021/12/16 2:26 p.m.24 views

phpservermon is vulnerable to CRLF Injection

phpservermon is vulnerable to Improper Neutralization of CRLF Sequences...

6.3CVSS3.1AI score0.00843EPSS
Exploits1References4Affected Software1
Veracode
Veracode
added 2021/12/13 3:48 a.m.45 views

CRLF Injection

phpservermon/phpservermon is vulnerable to CRLF injection. The vulnerability exists because of the misconfiguration in nginx that allows a malicious attacker to gain CSRF token and set fake cookies...

5.4CVSS3.3AI score0.00843EPSS
Exploits1References3Affected Software1
ATTACKERKB
ATTACKERKB
added 2021/12/12 12:15 a.m.7 views

CVE-2021-4097

phpservermon is vulnerable to Improper Neutralization of CRLF Sequences...

6.3CVSS6.2AI score0.00843EPSS
Exploits1References3
OSV
OSV
added 2021/12/12 12:15 a.m.18 views

CVE-2021-4097

phpservermon is vulnerable to Improper Neutralization of CRLF Sequences...

5.4CVSS6.7AI score
Exploits0References2
NVD
NVD
added 2021/12/12 12:15 a.m.26 views

CVE-2021-4097

phpservermon is vulnerable to Improper Neutralization of CRLF Sequences...

6.3CVSS0.00843EPSS
Exploits1References2
Prion
Prion
added 2021/12/12 12:15 a.m.17 views

Design/Logic Flaw

phpservermon is vulnerable to Improper Neutralization of CRLF Sequences...

5.8CVSS5.4AI score0.00843EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2021/12/11 11:30 p.m.31 views

CVE-2021-4097 CRLF Injection in phpservermon/phpservermon

phpservermon is vulnerable to Improper Neutralization of CRLF Sequences...

6.3CVSS5.7AI score0.00843EPSS
Exploits1References2
CVE
CVE
added 2021/12/11 11:30 p.m.72 views

CVE-2021-4097

CVE-2021-4097 affects the PHP project phpservermon and is described as an Improper Neutralization of CRLF Sequences (CRLF injection) . The provided connected documents confirm the vulnerability name and vector but do not specify affected versions, exact root cause details, or available fixes/patc...

6.3CVSS5.5AI score0.00843EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder