DEBIAN-CVE-2021-47419

In the Linux kernel, the following vulnerability has been resolved: net/sched: schtaprio: properly cancel timer from tapriodestroy There is a comment in qdisccreate about us not calling ops-reset in some cases. errout4: / Any broken qdiscs that would require a ops-reset here? The qdisc was never ...

CVE-2024-29417

Insecure Permissions vulnerability in e-trust Horacius 1.0, 1.1, and 1.2 allows a local attacker to escalate privileges via the password reset function...

PT-2024-19519 · Seo Panel · Seo Panel

Name of the Vulnerable Software and Affected Versions: SEO Panel version 4.10.0 Description: An email address enumeration issue exists in the password reset function. This allows an attacker to guess which emails exist on the system. Recommendations: For SEO Panel version 4.10.0, consider disabli...

CVE-2023-46526

TP-LINK TL-WR886N V7.03.0.14Build221115Rel.56908n.bin was discovered to contain a stack overflow via the function resetCloudPwdRegister...

PT-2023-15519 · Unknown · Netman 204

Name of the Vulnerable Software and Affected Versions: NetMan 204 affected versions not specified Description: The issue allows an attacker who knows the MAC and serial number of the device to reset the administrator password via the legitimate recovery function. Recommendations: At the moment,...

CVE-2023-36993

The cryptographically insecure random number generator being used in TravianZ 8.3.4 and 8.3.3 in the password reset function allows an attacker to guess the password reset.parameters and to take over accounts...

CVE-2023-2434

The Nested Pages plugin for WordPress is vulnerable to unauthorized loss of data due to a missing capability check on the 'reset' function in versions up to, and including, 3.2.3. This makes it possible for authenticated attackers, with editor-level permissions and above, to reset plugin settings...

PT-2025-25967 · Linux +2 · Linux Kernel +2

Name of the Vulnerable Software and Affected Versions: Linux kernel versions prior to 5.19.0-rc6+ Description: A vulnerability in the Linux kernel has been resolved, which was causing a call trace with a null VSI during VF reset. The issue occurred during stress tests with attaching and detaching...

Denial Of Service (DoS)

exim4:buster is vulnerable to denial of service. The vulnerability exists because of failure to reset function pointer after BDAT error...

RUSTSEC-2018-0012 Flaw in streaming state reset() functions can create incorrect results.

Affected versions of this crate did not properly reset a streaming state. Resetting a streaming state, without finalising it first, creates incorrect results. The flaw was corrected by not first checking if the state had already been reset, when calling reset...

uriparser UriCommon.c File Denial of Service Vulnerability

uriparser is a standard based on RFC 3986 URI parsing and processing library . A security vulnerability exists in the UriCommon.c file in uriparser versions prior to 0.9.0. An attacker can exploit this vulnerability to cause a denial of service with the 'uriResetUri' function...

DEBIAN-CVE-2018-19200

An issue was discovered in uriparser before 0.9.0. UriCommon.c allows attempted operations on NULL input via a uriResetUri function...

Arbitrary Account Password Reset Vulnerability in Easy Nurse Android App

Easy Nurse Android App is a mobile nursing application. Easy Nurse Android APP has an arbitrary account password reset vulnerability. An attacker can reset any password by grabbing and modifying the password reset function...

MediaWiki TimedMediaHandler Extension Denial of Service Vulnerability

MediaWiki is a free and freely available web-based wiki engine developed and maintained by the Wikimedia Foundation and the MediaWiki Volunteers for the deployment of in-house knowledge management and content management systems.TimedMediaHandler is one of the extensions used to display audio and...

ecshop找回密码功能存在安全隐患

简要描述： 可能随时都能重置用户密码问题 详细说明： user.php 740行 / 修改会员密码 / elseif $action == 'acteditpassword' includeonceROOTPATH . 'includes/libpassport.php'; $oldpassword = isset$POST'oldpassword' ? trim$POST'oldpassword' : null; $newpassword = isset$POST'newpassword' ? trim$POST'newpassword' : ''; $userid =...

Research: Password 'secret question' woefully insecure

In research to be presented at the IEEE Symposium on Security and Privacy virginia.edu this week, researchers from Microsoft and Carnegie Mellon University plan to show that the secret questions used to secure the password-reset functions of a variety of websites are woefully insecure. In a study...