Lucene search
K

21 matches found

Nuclei
Nuclei
added 9 hours ago12 views

PSW Front-end Login & Registration 1.13 - Weak Password Recovery

PSW Front-end Login & Registration plugin for WordPress contains a weak password recovery mechanism that can be exploited by unauthenticated attackers. This vulnerability affects versions through 1.13 and allows attackers to potentially gain unauthorized access. id: CVE-2025-47646 info: name: PSW...

9.8CVSS7.2AI score0.21914EPSS
Exploits3References5
CNNVD
CNNVD
added 2025/05/31 12:0 a.m.4 views

WordPress plugin PSW Front-end Login & Registration 安全特征问题漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed in the PHP language. The platform supports personal blog sites on servers running PHP and MySQL.WordPress plugin is an application plugin. A security feature issue vulnerabilit...

9.8CVSS6.3AI score0.00467EPSS
Exploits0References7
RedhatCVE
RedhatCVE
added 2025/05/25 1:19 p.m.15 views

CVE-2025-47646

Weak Password Recovery Mechanism for Forgotten Password vulnerability in Gilblas Ngunte Possi PSW Front-end Login & Registration psw-login-and-registration allows Password Recovery Exploitation.This issue affects PSW Front-end Login & Registration: from n/a through = 1.13...

9.8CVSS7.2AI score0.21914EPSS
Exploits3References1
NVD
NVD
added 2025/05/23 1:15 p.m.16 views

CVE-2025-47646

Weak Password Recovery Mechanism for Forgotten Password vulnerability in Gilblas Ngunte Possi PSW Front-end Login & Registration psw-login-and-registration allows Password Recovery Exploitation.This issue affects PSW Front-end Login & Registration: from n/a through = 1.13...

9.8CVSS0.21914EPSS
Exploits3References1
CVE
CVE
added 2025/05/23 12:43 p.m.122 views

CVE-2025-47646

CVE-2025-47646 affects the WordPress plugin PSW Front-end Login & Registration (versions ≤ 1.13). The Nuclei template and related exploits describe a weak password recovery/unauthenticated registration mechanism that can enable account creation without authentication, potentially followed by priv...

9.8CVSS8.5AI score0.21914EPSS
Exploits3References1
Cvelist
Cvelist
added 2025/05/23 12:43 p.m.37 views

CVE-2025-47646 WordPress PSW Front-end Login & Registration plugin <= 1.13 - Broken Authentication Vulnerability

Weak Password Recovery Mechanism for Forgotten Password vulnerability in Gilblas Ngunte Possi PSW Front-end Login & Registration psw-login-and-registration allows Password Recovery Exploitation.This issue affects PSW Front-end Login & Registration: from n/a through = 1.13...

9.8CVSS0.21914EPSS
Exploits3References1
Positive Technologies
Positive Technologies
added 2025/05/23 12:0 a.m.6 views

PT-2025-22770 · Unknown · Psw Front-End Login & Registration

Name of the Vulnerable Software and Affected Versions: Gilblas Ngunte Possi PSW Front-end Login & Registration versions n/a through 1.13 Description: The issue is related to a Weak Password Recovery Mechanism for Forgotten Password, which allows Password Recovery Exploitation in the PSW Front-end...

9.8CVSS9.5AI score0.21914EPSS
Exploits3References4
Intel
Intel
added 2022/10/19 12:0 a.m.77 views

Intel® Processors MMIO Stale Data Advisory

Summary: Potential security vulnerabilities in Memory Mapped I/O MMIO for some Intel® Processors may allow information disclosure. Intel is releasing firmware updates to mitigate these potential vulnerabilities. Vulnerability Details: CVEID: CVE-2022-21123 Description: Incomplete cleanup of...

5.5CVSS7AI score0.06451EPSS
Exploits0
Zero Day Initiative
Zero Day Initiative
added 2021/02/10 12:0 a.m.192 views

Omron CX-One PSW File Parsing Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Omron CX-One. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the parsing of PSW...

7.8CVSS4.5AI score0.01781EPSS
Exploits0References1
CNVD
CNVD
added 2020/06/30 12:0 a.m.2 views

Unspecified Vulnerability in NeDi Consulting NeDi (CNVD-2020-44583)

NeDi Consulting NeDi is a suite of open source software that supports discovery and mapping of network devices from the Swiss company NeDi Consulting. A security vulnerability exists in NeDi Consulting NeDi version 1.9C, which stems from the System-Snapshot.php file not properly escaping shell...

9CVSS7.4AI score0.03681EPSS
Exploits0References1
Lenovo
Lenovo
added 2020/03/07 12:32 a.m.22 views

Intel SGX and Processor Side Channel Data Leakage Vulnerabilities - Lenovo Support US

No description provided...

7.8CVSS5.7AI score0.0104EPSS
Exploits1
Zero Day Initiative
Zero Day Initiative
added 2019/01/24 12:0 a.m.18 views

OMRON CX-One CX-Protocol CObject Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-One CX-Protocol. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS1.6AI score0.01424EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/01/14 12:0 a.m.18 views

OMRON CX-One CX-Protocol CObject Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-One CX-Protocol. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS1.6AI score0.01424EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/01/14 12:0 a.m.19 views

OMRON CX-One CX-Protocol CObject Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-One CX-Protocol. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS1.6AI score0.01424EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2019/01/14 12:0 a.m.19 views

OMRON CX-One CX-Protocol CObject Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-One CX-Protocol. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the...

7.8CVSS1.6AI score0.01424EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2018/04/11 12:0 a.m.26 views

OMRON CX-One CX-Protocol CObject Type Confusion Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on vulnerable installations of OMRON CX-One. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the processing of P...

6.8CVSS4.8AI score0.00331EPSS
Exploits0References1
Prion
Prion
added 2012/09/06 10:41 a.m.17 views

Design/Logic Flaw

Multiple untrusted search path vulnerabilities in e-press ONE Office Author allow local users to gain privileges via a Trojan horse 1 javamsci.dll or 2 mscijava.dll file in the current working directory, as demonstrated by a directory that contains a .psw file. NOTE: some of these details are...

6.9CVSS7.2AI score0.00403EPSS
Exploits0References2
Cvelist
Cvelist
added 2012/09/06 10:0 a.m.21 views

CVE-2010-5205

Multiple untrusted search path vulnerabilities in e-press ONE Office Author allow local users to gain privileges via a Trojan horse 1 javamsci.dll or 2 mscijava.dll file in the current working directory, as demonstrated by a directory that contains a .psw file. NOTE: some of these details are...

6.7AI score0.00403EPSS
Exploits0References2
Prion
Prion
added 2008/12/15 6:0 p.m.17 views

Sql injection

SQL injection vulnerability in admin/login.asp in Professional Download Assistant 0.1 allows remote attackers to execute arbitrary SQL commands via the 1 uname parameter aka user field or the 2 psw parameter aka passwd field. NOTE: some of these details are obtained from third party information...

7.5CVSS9AI score0.02373EPSS
Exploits0References6Affected Software1
myhack58
myhack58
added 2007/01/11 12:0 a.m.21 views

Analysis of black anti-CD QQ black hand-vulnerability warning-the black bar safety net

Look at the hack line of Defense for the official announcement, 6 issues disc this month I promote the column, the moving network vulnerabilities using the animation included with the tool will make the antivirus Alarm, tips for Trojan-PSW. Win32. QQShou. ed. A thought, my old magic computer blac...

Exploits0
Rows per page
Query Builder