33 matches found
Silverpeas authentication bypass
Silverpeas before 6.3.5 allows authentication bypass by omitting the Password field to AuthenticationServlet, often providing an unauthenticated user with superadmin access...
CVE-2024-36042
Silverpeas before 6.3.5 allows authentication bypass by omitting the Password field to AuthenticationServlet, often providing an unauthenticated user with superadmin access...
CVE-2024-36042
Silverpeas before 6.3.5 allows authentication bypass by omitting the Password field to AuthenticationServlet, often providing an unauthenticated user with superadmin access...
CVE-2024-36042
Silverpeas before 6.3.5 allows authentication bypass by omitting the Password field to AuthenticationServlet, often providing an unauthenticated user with superadmin access...
PT-2024-26859 · Unknown · Silverpeas
Name of the Vulnerable Software and Affected Versions: Silverpeas versions prior to 6.3.5 Description: The issue allows authentication bypass by omitting the Password field to AuthenticationServlet, potentially providing an unauthenticated user with superadmin access. This has been exploited in...
PT-2023-20662 · Xwiki · Xwiki Platform
Name of the Vulnerable Software and Affected Versions: XWiki Platform versions 11.6-rc-1 through 14.8 XWiki Platform versions 14.4.0 through 14.4.5 XWiki Platform versions 13.10.0 through 13.10.9 Description: The XWiki Platform is a generic wiki platform where comments are supposed to be executed...
Universal Password Bypass Vulnerability in KODAK Multimedia Recording and Broadcasting System of Suzhou KODAK Technology Co.
Ltd. is a provider of video and security products and solutions, dedicated to video conferencing, video surveillance and video application solutions to help various government and enterprise customers to solve visual communication and management challenges. Ltd. Kodak multimedia recording system...
CVE-2014-0649
The RMI interface in Cisco Secure Access Control System ACS 5.x before 5.5 does not properly enforce authorization requirements, which allows remote authenticated users to obtain superadmin access via a request to this interface, aka Bug ID CSCud75180...
CVE-2010-4733
WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms have a default username and password, which makes it easier for remote attackers to obtain superadmin access via the web interface, a...
Default credentials
WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms have a default username and password, which makes it easier for remote attackers to obtain superadmin access via the web interface, a...
CVE-2010-4733
CVE-2010-4733 and related entries describe default-credential and remote-authenticated risks affecting Intellicom NetBiter NetSCADA WebSCADA components (WS100/WS200, EC150, MB100, SS100 on NB100/NB200). The root issue cited is default usernames/passwords allowing superadmin access via the web int...
CVE-2010-4733
WebSCADA WS100 and WS200, Easy Connect EC150, Modbus RTU - TCP Gateway MB100, and Serial Ethernet Server SS100 on the IntelliCom NetBiter NB100 and NB200 platforms have a default username and password, which makes it easier for remote attackers to obtain superadmin access via the web interface, a...
waraxe-2004-SA004.txt
================================================================================ waraxe-2004-SA004 ================================================================================ Multiple vulnerabilities in XMB 1.8 Partagium Final SP2...