19 matches found
CVE-2020-12051
The CentralAuth extension through REL134 for MediaWiki allows remote attackers to obtain sensitive hidden account information via an api.php?action=query=globaluserinfo= request. In other words, the information can be retrieved via the action API even though access would be denied when simply...
EUVD-2002-0261
Malware in sbrugna...
EUVD-2020-4367
Malware in sbrugna...
EUVD-2016-7483
Malware in sbrugna...
EUVD-2022-48499
Malicious code in bioql PyPI...
CVE-2022-45634
An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows authenticated attacker to gain access to sensitive account information...
CVE-2019-5498
OnCommand Insight versions through 7.3.6 may disclose sensitive account information to an authenticated user...
CVE-2025-45237
Incorrect access control in the component /config/download of DBSyncer v2.0.6 allows attackers to access the JSON file containing sensitive account information, including the encrypted password...
CVE-2022-45634
An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows authenticated attacker to gain access to sensitive account information...
CVE-2022-45634
An issue discovered in MEGAFEIS, BOFEI DBD+ Application for IOS & Android v1.4.4 allows authenticated attacker to gain access to sensitive account information...
Code injection
Using the ability to perform a Man-in-the-Middle MITM attack, which indicates a lack of hostname verification, sensitive account information was able to be intercepted. In this specific scenario, the application's network traffic was intercepted using a proxy server set up in 'transparent' mode...
NetApp OnCommand Unified Manager Information Disclosure Vulnerability
Netapp NetApp OnCommand Unified Manager is a suite of ONTAP system management software from the U.S. company NetApp Netapp. The software can simplify data management, monitor the storage system infrastructure and detect failures. An information disclosure vulnerability exists in NetApp OnCommand...
CVE-2019-5498
OnCommand Insight versions through 7.3.6 may disclose sensitive account information to an authenticated user...
Code injection
Element Plug-in for vCenter Server versions prior to 4.2.3 may disclose sensitive account information to an unauthenticated attacker. NetApp HCI Compute Node versions prior to 1.4P2 bundle affected versions of Element Plug-in for vCenter Server...
CVE-2019-5492
Element Plug-in for vCenter Server versions prior to 4.2.3 may disclose sensitive account information to an unauthenticated attacker. NetApp HCI Compute Node versions prior to 1.4P2 bundle affected versions of Element Plug-in for vCenter Server...
IMM2 Information Disclosure Vulnerability in Multiple IBM Products
IBM Flex System x220 Compute Node and others are different series of server devices from IBM Corporation in the U.S. Integrated Management Module II IMM2 is one of the integrated management modules. A security vulnerability exists in IMM2 in several IBM products. A remote attacker could exploit...
Space Coast Credit Union SCCU Mobile for Android and iPhone fails to properly validate SSL certificates
Overview Space Coast Credit Union SCCU Mobile for Android, version 2.1.0.1104 and earlier, and for iOS, version 2.2 and earlier, fails to properly validate SSL certificates provided by HTTPS connections, which may enable an attacker to conduct man-in-the-middle MITM attacks. Description CWE-295:...
CVE-2016-3373
CVE-2016-3373 is a Windows kernel local elevation-of-privilege vulnerability. The Windows Kernel API improperly restricts access to registry information, enabling a locally authenticated attacker to obtain sensitive user account data via a crafted application. Affected products include Windows Vi...
Omron Multiple Product Vulnerabilities
OVERVIEW Air Force Institute of Technology researcher Stephen Dunlap has identified vulnerabilities in Omron Corporation’s CX-Programmer software, CJ2M series programmable logic controller PLC, and CJ2H series PLC. Omron Corporation has produced new versions that mitigate these vulnerabilities. O...