WebDyne::Session 安全特征问题漏洞

WebDyne::Session is a server-side component developed by ASPEER’s individual developers, used for session management in web applications. Versions of WebDyne::Session 2.075 and earlier contained security vulnerabilities. These vulnerabilities stemmed from insecure session ID generation. The sessi...

Apache::Session::Generate::MD5 安全漏洞

Apache::Session::Generate::MD5 is a session management module provided by the Apache Foundation. Versions of Apache::Session::Generate::MD5 prior to 1.94 contained security vulnerabilities. These vulnerabilities stemmed from the use of insecure random number generators for generating session IDs,...

CVE-2020-10575

An issue was discovered in Janus through 0.9.1. plugins/janusvideocall.c in the VideoCall plugin mishandles session management because a race condition causes some references to be freed too early or too many times...

CVE-2021-47740

KZTech JT3500V 4G LTE CPE 2.0.1 contains a session management vulnerability that allows attackers to reuse old session credentials without proper expiration. Attackers can exploit the weak session handling to maintain unauthorized access and potentially compromise device authentication mechanisms...

EUVD-2021-12817

Malware in sbrugna...

EUVD-2020-24568

Malware in sbrugna...

EUVD-2021-25503

Malware in sbrugna...

EUVD-2013-5253

Malware in sbrugna...

EUVD-2020-4070

Malware in sbrugna...

EUVD-2020-20243

Malware in sbrugna...

EUVD-2016-6211

Malware in sbrugna...

EUVD-2024-26829

Malicious code in bioql PyPI...

EUVD-2024-0799

Malicious code in bioql PyPI...

EUVD-2022-27430

Malicious code in bioql PyPI...

EUVD-2023-55667

Malicious code in bioql PyPI...

EUVD-2022-37289

Malicious code in bioql PyPI...

EUVD-2023-41391

Malicious code in bioql PyPI...

CVE-2023-20254

A vulnerability in the session management system of the Cisco Catalyst SD-WAN Manager multi-tenant feature could allow an authenticated, remote attacker to access another tenant that is being managed by the same Cisco Catalyst SD-WAN Manager instance. This vulnerability requires the multi-tenant...

CVE-2021-23196

The web application on Agilia Link+ version 3.0 implements authentication and session management mechanisms exclusively on the client-side and does not protect authentication attributes sufficiently...

CVE-2019-5966

Joruri Mail 2.1.4 and earlier does not properly manage sessions, which allows remote attackers to impersonate an arbitrary user and alter/disclose the information via unspecified vectors...