KMW CCTV Security Cameras 安全漏洞

KMW CCTV Security Cameras are a series of video surveillance cameras produced by the Romanian company KMW. KMW CCTV Security Cameras have security vulnerabilities, which stem from unauthenticated password resets. This could allow attackers to remotely reset administrator passwords and gain full...

Weak Password Recovery Mechanism for Forgotten Password

Overview phpmyfaq/phpmyfaq is a FAQ system for PHP and MySQL, PostgreSQL and other databases Affected versions of this package are vulnerable to Weak Password Recovery Mechanism for Forgotten Password via the updatePassword function. An attacker can enumerate valid user accounts and forcibly chan...

CVE-2025-12696

The HelloLeads CRM Form Shortcode WordPress plugin through 1.0 does not have authorisation and CSRF check when resetting its settings, allowing unauthenticated users to reset them...

CVE-2025-12866

CVE-2025-12866 affects Hundred Plus EIP Plus (enterprise management software). The root cause is a Weak Password Recovery Mechanism that allows an unauthenticated remote attacker to predict or brute-force the password reset link, enabling password resets for any user. Consequences include potenti...

PT-2023-21531 · Unknown · Pandora Fms

Name of the Vulnerable Software and Affected Versions: Pandora FMS versions prior to 7.71 Description: The issue is related to an Authentication Bypass by Spoofing vulnerability in the password reset process. This allows an unauthenticated attacker to initiate a password reset process for any use...

XMSWR-W18 of Shanghai Simmer Communication Technology Co., Ltd. suffers from an override access vulnerability

XMSWR-W18M is an intelligent wireless router from Shanghai Ximo Communication Technology Co. Ltd. XMSWR-W18 suffers from an override access vulnerability that allows an attacker to reset arbitrary devices without authentication...