Lucene search
K

7 matches found

OSV
OSV
added 2025/03/01 12:10 a.m.6 views

CVE-2025-27416 Asking For Scratch Username And Password

Scratch-Coding-Hut.github.io is the website for Coding Hut. The website as of 28 February 2025 contained a sign in with scratch username and password form. Any user who used the sign in page would be susceptible to any other user signing into their account. As of time of publication, a fix is not...

8.8CVSS7AI score0.00434EPSS
Exploits0References4
RedHat Linux
RedHat Linux
added 2023/05/16 8:52 a.m.50 views

Moderate: Red Hat Security Advisory: grafana security update

An update for grafana is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

7.5CVSS6.7AI score0.02607EPSS
Exploits1References6
ATTACKERKB
ATTACKERKB
added 2022/05/09 7:15 p.m.6 views

CVE-2022-29868

1Password for Mac 7.2.4 through 7.9.x before 7.9.3 is vulnerable to a process validation bypass. Malicious software running on the same computer can exfiltrate secrets from 1Password provided that 1Password is running and is unlocked. Affected secrets include vault items and derived values used f...

5.5CVSS6.1AI score0.00155EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2018/04/17 12:0 a.m.9 views

Microsoft Office: Disable First Run Movie

This test checks the setting for policy OpenVAS Vulnerability Test $Id: office2013firstrunmovie.nasl 11843 2018-10-11 14:33:21Z emoss $ Check value for Disable First Run Movie Authors: Emanuel Moss Copyright: Copyright c 2018 Greenbone Networks GmbH, http://www.greenbone.net This program is free...

7.3AI score
Exploits0
NVD
NVD
added 2018/03/24 9:29 p.m.24 views

CVE-2018-8971

The Auth0 integration in GitLab before 10.3.9, 10.4.x before 10.4.6, and 10.5.x before 10.5.6 has an incorrect omniauth-auth0 configuration, leading to signing in unintended users...

9.8CVSS9.3AI score0.01339EPSS
Exploits0References2
OSV
OSV
added 2018/03/24 9:29 p.m.17 views

CVE-2018-8971

The Auth0 integration in GitLab before 10.3.9, 10.4.x before 10.4.6, and 10.5.x before 10.5.6 has an incorrect omniauth-auth0 configuration, leading to signing in unintended users...

9.8CVSS6.8AI score
Exploits0References2
Hacker One
Hacker One
added 2017/04/25 10:32 a.m.13 views

Weblate: Open redirect in Signing in via Social Sites

Weak Authentication Leads to the Open redirection to Malicios Sites : Signing in via Facebook : + https://hosted.weblate.org/accounts/login/facebook/?next=///evil.com Signing in via Gmail : + https://hosted.weblate.org/accounts/login/google-oauth2/?next=///evil.com Signing in via Github: +...

0.7AI score
Exploits0
Rows per page
Query Builder