CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2000-0110

Malware in sbrugna...

7.5CVSS6.4AI score0.0075EPSS

Exploits0References2

EUVD•added 2025/10/03 8:7 p.m.•2 views

EUVD-2025-24816

Malicious code in bioql PyPI...

8.8CVSS6.5AI score0.00089EPSS

Exploits0References1

Positive Technologies•added 2025/08/14 12:0 a.m.•3 views

PT-2025-33283 · Unknown · Armorblock 5000 +1

Name of the Vulnerable Software and Affected Versions: ArmorBlock 5000 affected versions not specified Description: A security issue exists within the 5032 16pt Digital Configurable module’s web server. The web server’s session number increments at an interval that correlates to the last two...

8.8CVSS6.1AI score0.00089EPSS

Exploits0References4

OSV•added 2017/06/30 3:29 a.m.•1 views

CVE-2017-6026

A Use of Insufficiently Random Values issue was discovered in Schneider Electric Modicon PLCs Modicon M241, firmware versions prior to Version 4.0.5.11, and Modicon M251, firmware versions prior to Version 4.0.5.11. The session numbers generated by the web application are lacking randomization an...

9.1CVSS5.8AI score0.14763EPSS

Exploits5References3

OSV•added 2014/11/14 12:57 a.m.•4 views

MGASA-2014-0445 Updated kdebase4-workspace packages fix security vulnerability and various bugs

This update fixes a security vulnerability in the KDE workspace configuration module for setting the date and time CVE-2014-8651, mga14487, and fixes some additional issues: - fix kcm botching unrelated user settings mga3310, bko254430, - do not popup during initialization 0 B Removable media...

7.2CVSS6.3AI score0.00089EPSS

Exploits0References6

NVD•added 2013/12/14 10:55 p.m.•8 views

CVE-2013-6972

Cisco WebEx Training Center allows remote attackers to discover session numbers, and bypass host approval for audio-conference attendance, by reading HTML source code, aka Bug ID CSCul57126...

5CVSS6.7AI score0.00657EPSS

Exploits1References6

Prion•added 2013/12/14 10:55 p.m.•12 views

Authentication flaw

Cisco WebEx Training Center allows remote attackers to discover session numbers, and bypass host approval for audio-conference attendance, by reading HTML source code, aka Bug ID CSCul57126...

5CVSS7.2AI score0.00657EPSS

Exploits1References6

Cvelist•added 2013/12/14 10:0 p.m.•17 views

CVE-2013-6972

Cisco WebEx Training Center allows remote attackers to discover session numbers, and bypass host approval for audio-conference attendance, by reading HTML source code, aka Bug ID CSCul57126...

6.7AI score0.00657EPSS

Exploits1References6

CVE•added 2013/12/14 10:0 p.m.•33 views

CVE-2013-6972

Cisco WebEx Training Center exposes session numbers via server HTML responses, allowing remote attackers to discover valid session numbers and bypass host approval to join audio-conferences without attendee authorization. Root cause: inappropriate disclosure of sensitive information in server rep...

5CVSS6.9AI score0.00657EPSS

Exploits1References6Affected Software1

Cvelist•added 2001/01/22 5:0 a.m.•14 views

CVE-2000-0111

The RightFax web client uses predictable session numbers, which allows remote attackers to hijack user sessions...

6.7AI score0.0075EPSS

Exploits0References1

Packet Storm•added 2000/02/01 12:0 a.m.•35 views

rightfax.txt

LoWNOISE Colombia 2000 +---RightFax Web Client v5.2: Hijack user's sessions +---Description Using your web browser When you click to log on to the rightfax server, it opens a new window. In that window you are asked for a username and password. The Toolbar on the browser is hidden, but if you ope...

7.4AI score

Exploits0

NVD•added 2000/01/29 5:0 a.m.•8 views

CVE-2000-0111

The RightFax web client uses predictable session numbers, which allows remote attackers to hijack user sessions...

7.5CVSS6.7AI score0.0075EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by