Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

EUVD
EUVDadded 2026/03/28 12:30 p.m.4 views

EUVD-2026-16911

Shenzhen Tenda AC7 firmware version V03.03.03.01cn and prior expose sensitive information in web management responses. Administrative credentials, including the router and/or admin panel password, are included in plaintext within configuration response bodies. In addition, responses lack...

6.8CVSS5.9AI score0.00146EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2026/03/17 12:0 a.m.0 views

PT-2026-25948

Edimax GS-5008PL firmware version 1.00.54 and prior contain an insecure credential storage vulnerability that allows attackers to obtain administrator credentials by accessing configuration backup files. Attackers can download the config.bin file through fupload.cgi to extract plaintext username...

7.1CVSS5.8AI score0.00011EPSS
Exploits0References5
Cvelist
Cvelistadded 2026/03/09 12:0 a.m.19 views

CVE-2026-30140

An incorrect access control vulnerability exists in Tenda W15E V02.03.01.26cn. An unauthenticated attacker can access the /cgi-bin/DownloadCfg/RouterCfm.jpg endpoint to download the configuration file containing plaintext administrator credentials, leading to sensitive information disclosure and...

0.00067EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/03/09 12:0 a.m.0 views

PT-2026-24098

An incorrect access control vulnerability exists in Tenda W15E V02.03.01.26 cn. An unauthenticated attacker can access the /cgi-bin/DownloadCfg/RouterCfm.jpg endpoint to download the configuration file containing plaintext administrator credentials, leading to sensitive information disclosure and...

6AI score0.00067EPSS
Exploits0References2
EUVD
EUVDadded 2025/10/03 8:7 p.m.2 views

EUVD-2025-30814

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00068EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/09/24 12:28 a.m.5 views

CVE-2025-57430

Creacast Creabox Manager 4.4.4 exposes sensitive configuration data via a publicly accessible endpoint /get. When accessed, this endpoint returns internal configuration including the creacodec.lua file, which contains plaintext admin credentials...

7.5CVSS6.8AI score0.00068EPSS
Exploits1References1
NVD
NVDadded 2025/09/22 4:15 p.m.1 views

CVE-2025-57430

Creacast Creabox Manager 4.4.4 exposes sensitive configuration data via a publicly accessible endpoint /get. When accessed, this endpoint returns internal configuration including the creacodec.lua file, which contains plaintext admin credentials...

7.5CVSS0.00068EPSS
Exploits1References2
Positive Technologies
Positive Technologiesadded 2024/10/02 12:0 a.m.1 views

PT-2024-26420 · Schneider Elektronik · Series 700

Name of the Vulnerable Software and Affected Versions: No specific software or versions are mentioned in the provided descriptions. Description: An unauthenticated remote attacker may use the device's traffic capture without authentication to grab plaintext administrative credentials...

6.5CVSS7.4AI score0.00334EPSS
Exploits0References6
Rows per page
Query Builder