CVE-2023-31068

An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories under %PROGRAMFILESX86%\TSplus\UserDesktop\themes...

CVE-2023-31069

An issue was discovered in TSplus Remote Access through 16.0.2.14. Credentials are stored as cleartext within the HTML source code of the login page...

EUVD-2023-35398

Malicious code in bioql PyPI...

EUVD-2023-35396

Malicious code in bioql PyPI...

EUVD-2023-30916

Malicious code in bioql PyPI...

EUVD-2025-23007

Malicious code in bioql PyPI...

EUVD-2023-35397

Malicious code in bioql PyPI...

EUVD-2023-30917

Malicious code in bioql PyPI...

EUVD-2025-6178

Malicious code in bioql PyPI...

CVE-2025-5922

Access to TSplus Remote Access Admin Tool is restricted to administrators unless "Disable UAC" option is enabled and requires a PIN code. In versions below v18.40.6.17 the PIN's hash is stored in a system registry accessible to regular users, making it possible to perform a brute-force attack usi...

CVE-2025-5922

Access to TSplus Remote Access Admin Tool is restricted to administrators unless "Disable UAC" option is enabled and requires a PIN code. In versions below v18.40.6.17 the PIN's hash is stored in a system registry accessible to regular users, making it possible to perform a brute-force attack usi...

CVE-2025-5922 Retrievable password hash protecting TSplus admin console

Access to TSplus Remote Access Admin Tool is restricted to administrators unless "Disable UAC" option is enabled and requires a PIN code. In versions below v18.40.6.17 the PIN's hash is stored in a system registry accessible to regular users, making it possible to perform a brute-force attack usi...

CVE-2025-5922

TSplus Remote Access Admin Tool stores the PIN hash in the system registry for versions below 18.40.6.17, and the hash is not salted, enabling potential brute-force attacks using rainbow tables. Patches are provided in v18.40.6.17 and in LTS lines: v17.2025.6.27 and v16.2025.6.27. Affected compon...

CVE-2025-5922 Retrievable password hash protecting TSplus admin console

Access to TSplus Remote Access Admin Tool is restricted to administrators unless "Disable UAC" option is enabled and requires a PIN code. In versions below v18.40.6.17 the PIN's hash is stored in a system registry accessible to regular users, making it possible to perform a brute-force attack usi...

TSplus Remote Access Admin Tool 安全漏洞

The TSplus Remote Access Admin Tool is a tool for centralized configuration and administration of the TSplus Remote Access Server from TSplus France. A security vulnerability exists in versions prior to TSplus Remote Access Admin Tool v18.40.6.17, which stems from an unsalted PIN hash stored in t...

CVE-2023-27132

TSplus Remote Work 16.0.0.0 places a cleartext password on the "var pass" line of the HTML source code for the secure single sign-on web portal. NOTE: CVE-2023-31069 is only about the TSplus Remote Access product, not the TSplus Remote Work product...

CVE-2023-31067

An issue was discovered in TSplus Remote Access through 16.0.2.14. There are Full Control permissions for Everyone on some directories under %PROGRAMFILESX86%\TSplus\Clients\www...

CVE-2023-27133

TSplus Remote Work 16.0.0.0 has weak permissions for .exe, .js, and .html files under the %PROGRAMFILESX86%\TSplus-RemoteWork\Clients\www folder. This may enable privilege escalation if a different local user modifies a file. NOTE: CVE-2023-31067 and CVE-2023-31068 are only about the TSplus Remot...

TSPlus Detected

This is an informational notice that the scanner was able to detect TSPlus on the target server. Note that this detection is included in the Remote Access Tools category. No source data...

TSplus Remote Access (Windows)

Binary data tsplusremoteaccessserverdetect.nbin...