16 matches found
CVE-2020-24804
Plaintext Password vulnerability in AddAdmin.py in cms-dev/cms v1.4.rc1, allows attackers to gain sensitive information via audit logs...
EUVD-2018-3123
Malware in sbrugna...
EUVD-2020-17514
Malware in sbrugna...
EUVD-2010-5056
Malware in sbrugna...
EUVD-2022-4931
Malicious code in bioql PyPI...
CVE-2019-10630
A plaintext password vulnerability in the Zyxel NAS 326 through 5.21 allows an elevated privileged user to get the admin password of the device...
CVE-2025-21111
Dell VxRail, versions 8.0.000 through 8.0.311, contains a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, leading to Information exposure...
CVE-2025-21111
Dell VxRail releases 8.0.000–8.0.311 are affected by a plaintext storage of a password vulnerability. A high-privilege attacker with local access could exposure confidential information. Impact: information exposure. A Dell security update (KB referenced) and upgrading to a version containing the...
Zyxel NAS 326 Plaintext Password Vulnerability
The Zyxel NAS 326 is a two-drive personal cloud storage device from Zyxel Hopscotch. A plaintext password vulnerability exists in Zyxel NAS 326 version 5.21 and earlier. A user with elevated privileges can exploit the vulnerability to obtain the administrator password of the device...
Security Bulletin: IBM Capacity Management Analytics is affected by a plaintext password vulnerability (CVE-2015-7433)
Summary IBM Capacity Management Analytics could allow a local user on the CMA install machine to obtain other CMA user's usernames and passwords in plaintext during the CMA install. Vulnerability Details CVEID: CVE-2015-7433 DESCRIPTION: IBM Capacity Management Analytics could allow a local user ...
SUSE-SU-2017:0475-1 Security update for susestudio
This update provides SUSE Studio Runner 1.3.14, which brings fixes for the following issues: - bsc968797: 11 SP3 appliance gets invalid distribution upgrade from SLMS. - bsc947225: Second build of appliance will not register to SLMS, wrong product name. - bsc983404: UEFI boot missing for SLE11 SP...
RedHat 6.2 Piranha Virtual Server Package Plaintext Password Vulnerability
No description provided by source. source: http://www.securityfocus.com/bid/1367/info Password changes submitted to Red Hat Piranha via HTTP are insecurely passed as variables in a GET request. Unauthorized users could obtain the password by reading the httpd access log or by sniffing...
Multiple Vulnerabilities in Web Forums Server
CHT Security Research Center-2004 http://www.CyberSpy.Org Turkey Software: Web Forums Server Web Site: http://www.minihttpserver.net Affected Versions: 1.6,2.0 Power Packcurrent Description: Web Forums Server is "all in one" Web Server for Microsoft Windows Operating Systems. Web Forums Server ha...
Vulnerabilities In Pablo Software Solutions FTP Service 1.2
Plaintext Password Vulnerability ------------------------------------ User info is stored in users.dat in plaintext. If the anonymous account is present it is by default the entire FTP server can be compromised ftp://somewhere/program files/pablo's ftp service/users.dat Default Anonymous Account...
CVE-2000-0402
The Mixed Mode authentication capability in Microsoft SQL Server 7.0 stores the System Administrator sa account in plaintext in a log file which is readable by any user, aka the "SQL Server 7.0 Service Pack Password" vulnerability...
CVE-1999-1073
Excite for Web Servers EWS 1.1 records the first two characters of a plaintext password in the beginning of the encrypted password, which makes it easier for an attacker to guess passwords via a brute force or dictionary attack...