Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

OSV
OSVadded 2022/07/11 11:15 a.m.0 views

CVE-2022-2302

Multiple Lenze products of the cabinet series skip the password verification upon second login. After a user has been logged on to the device once, a remote attacker can get full access without knowledge of the password...

9.8CVSS5.8AI score
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2022/07/11 10:0 a.m.1 views

CVE-2022-2302

Multiple Lenze products of the cabinet series skip the password verification upon second login. After a user has been logged on to the device once, a remote attacker can get full access without knowledge of the password...

9.8CVSS7.1AI score0.00679EPSS
Exploits0References2Affected Software3
CNNVD
CNNVDadded 2022/07/11 12:0 a.m.2 views

多款Lenze产品授权问题漏洞

Lenze cabinet c520 and others are a cabinet from Lenze Germany. An authorization issue vulnerability exists in the Lenze cabinet c520 versions V01.07.00.2757 through V01.08.01.3021, cabinet c550 versions V01.07.00.2757 through V01.08.01.3021, and cabinet c750 versions V01.07.00.2757 through V01.0...

9.8CVSS8.3AI score0.00679EPSS
Exploits0References2
OSV
OSVadded 2021/01/06 3:15 p.m.0 views

CVE-2020-36176

The iThemes Security formerly Better WP Security plugin before 7.7.0 for WordPress does not enforce a new-password requirement for an existing account until the second login occurs...

7.5CVSS7.1AI score0.00213EPSS
Exploits0References1
NVD
NVDadded 2021/01/06 3:15 p.m.12 views

CVE-2020-36176

The iThemes Security formerly Better WP Security plugin before 7.7.0 for WordPress does not enforce a new-password requirement for an existing account until the second login occurs...

7.5CVSS7.6AI score0.00213EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2021/01/06 3:15 p.m.2 views

CVE-2020-36176

The iThemes Security formerly Better WP Security plugin before 7.7.0 for WordPress does not enforce a new-password requirement for an existing account until the second login occurs...

7.5CVSS5.3AI score0.00213EPSS
Exploits0References2
CNNVD
CNNVDadded 2021/01/06 12:0 a.m.2 views

Wordpress Ithemes Security Plugin 处理逻辑错误漏洞

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Wordpress Foundation. The platform supports setting up personal blog sites on servers with PHP and MySQL. A security vulnerability exists in Wordpress Ithemes Security Plugin versions prior to 7.7.0, which...

7.5CVSS7.1AI score0.00213EPSS
Exploits0References2
WPVulnDB
WPVulnDBadded 2021/01/06 12:0 a.m.23 views

iThemes Security < 7.7.0 - New-Password Requirements Not Enforced Until second Login

The plugin did not enforce new-password requirements for existing accounts until the second login occurred, which could leave an account configured with a potentially weak password until the user changes it...

5CVSS1.8AI score0.00213EPSS
Exploits0Affected Software1
OSV
OSVadded 2019/12/31 3:15 p.m.1 views

CVE-2019-10229

An issue was discovered in MailStore Server and Service Provider Edition 9.x through 11.x before 11.2.2. When the directory service for synchronizing and authenticating users is set to Generic LDAP, an attacker is able to login as an existing user with an arbitrary password on the second login...

8.8CVSS7.4AI score0.00319EPSS
Exploits0References1
Rows per page
Query Builder