6 matches found
CVE-2021-47712 Kentico Xperience <= 12.0.102 URL Hashing Cryptography Vulnerability
A cryptography vulnerability in Kentico Xperience allows attackers to potentially manipulate URL hash values through existing hashing mechanisms. The hotfix introduces an additional security layer to prevent hash value reuse and potential exploitation...
CVE-2021-47712 Kentico Xperience <= 12.0.102 URL Hashing Cryptography Vulnerability
A cryptography vulnerability in Kentico Xperience allows attackers to potentially manipulate URL hash values through existing hashing mechanisms. The hotfix introduces an additional security layer to prevent hash value reuse and potential exploitation...
SUSE CVE-2024-53690
In the Linux kernel, the following vulnerability has been resolved: nilfs2: prevent use of deleted inode syzbot reported a WARNING in nilfsrmdir. 1 Because the inode bitmap is corrupted, an inode with an inode number that should exist as a ".nilfs" file was reassigned by nilfsmkdir for "file0",...
passhash: Missing policies for password in password_policies.go
Summary: Some missing policies to consider adding Policies: 1. Password History - There isno policy implemented for password history requirements. This will be for preventing users from reusing their previous passwords. 2. Strong password- here are no checks for strong password requirements like...
ZSQL: Number Of Days Before Which a Password Cannot Be Reused
You must configure the number of days before which a password cannot be reused. This configuration prevents password cracking caused by password reuse. It is configured by setting the PASSWORDREUSETIME parameter unit: day. After this parameter is set, the password can be reused only after the...
Cr3dOv3r v0.3 - Know The Dangers Of Credential Reuse Attacks
Your best friend in credential reuse attacks. Cr3dOv3r simply you give it an email then it does two simple jobs but useful : Search for public leaks for the email and if it any, it returns with all available details about the leak Using hacked-emails site API. Now you give it this email's old or...