Lucene search
K

26 matches found

F5 Networks
F5 Networks
added 2026/05/13 12:15 p.m.19 views

K000160903: iControl REST vulnerability CVE-2026-42058

Security Advisory Description An authenticated attacker's undisclosed requests to BIG-IP iControl REST can lead to an information leak of BIG-IP local user account names. CVE-2026-42058 Impact This vulnerability allows for a remote authenticated attacker with network access to the iControl REST...

5.3CVSS5.8AI score0.00187EPSS
Exploits0Affected Software11
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2017-16508

Malware in sbrugna...

4.3CVSS4.5AI score0.01445EPSS
Exploits0References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-7734

Malware in sbrugna...

5.3CVSS5.6AI score0.0093EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.15 views

EUVD-2018-1802

Malware in sbrugna...

8.8CVSS8.6AI score0.02239EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-11807

Malware in sbrugna...

7.5CVSS6.3AI score0.01505EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2022-44937

Malicious code in bioql PyPI...

4.3CVSS4.7AI score0.00573EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-21047

Malicious code in bioql PyPI...

8.7CVSS6.3AI score0.00447EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/07/12 7:24 p.m.11 views

CVE-2025-53625

The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fix...

8.7CVSS7.2AI score0.00447EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/07/10 6:31 p.m.2 views

CVE-2025-53625 DynamicPageList3 exposes hidden/suppressed usernames

The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fix...

8.7CVSS6.6AI score0.00447EPSS
Exploits0References2
OSV
OSV
added 2025/07/10 6:31 p.m.5 views

CVE-2025-53625 DynamicPageList3 exposes hidden/suppressed usernames

The DynamicPageList3 extension is a reporting tool for MediaWiki, listing category members and intersections with various formats and details. Several dpl parameters can leak usernames that have been hidden using revision deletion, suppression, or the hideuser block flag. The vulnerability is fix...

8.7CVSS6.6AI score0.00447EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 12:45 a.m.7 views

CVE-2022-22908

SangforCSClient.exe in Sangfor VDI Client 5.4.2.1006 allows attackers, when they are able to read process memory, to discover the contents of the Username and Password fields...

5.5CVSS6.7AI score0.00274EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:2 a.m.6 views

CVE-2019-17321

ClipSoft REXPERT 1.0.0.527 and earlier version have an information disclosure issue. When requesting web page associated with session, could leak username via session file path of HTTP response data. No authentication is required...

5.3CVSS6.9AI score0.0093EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/21 9:30 p.m.8 views

CVE-2006-6974

Headstart Solutions DeskPRO stores sensitive information under the web root with insufficient access control, which allows remote attackers to 1 list files in the includes/ directory; obtain the SQL username and password via a direct request for 2 config.php and 3 config.php.bak in includes/; rea...

7.5CVSS7.5AI score0.01272EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:28 p.m.6 views

CVE-2002-1970

SnortCenter 0.9.5, when configured to push Snort rules, stores the rules in a temporary file with world-readable and world-writable permissions, which allows local users to obtain usernames and passwords for the alert database servers...

2.1CVSS6.6AI score0.00377EPSS
Exploits0References1
NVD
NVD
added 2025/03/29 12:15 a.m.17 views

CVE-2024-51477

IBM InfoSphere Information Server 11.7 could allow an authenticated to obtain sensitive username information due to an observable response discrepancy...

6.5CVSS0.00281EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/05/29 9:15 p.m.3 views

CVE-2022-41766

An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. Upon an action=rollback operation, the alreadyrolled message can leak a user name when the user has been revision deleted/suppressed...

4.3CVSS5.7AI score0.00573EPSS
Exploits1References2
OSV
OSV
added 2023/05/29 9:15 p.m.1 views

UBUNTU-CVE-2022-41766

An issue was discovered in MediaWiki before 1.35.8, 1.36.x and 1.37.x before 1.37.5, and 1.38.x before 1.38.3. Upon an action=rollback operation, the alreadyrolled message can leak a user name when the user has been revision deleted/suppressed...

4.3CVSS5.7AI score0.00573EPSS
Exploits1References3
OSV
OSV
added 2019/03/21 3:59 p.m.7 views

CVE-2017-2659

It was found that dropbear before version 2013.59 with GSSAPI leaks whether given username is valid or invalid. When an invalid username is given, the GSSAPI authentication failure was incorrectly counted towards the maximum allowed number of password attempts...

7.5CVSS7.2AI score0.01505EPSS
Exploits0References2
0day.today
0day.today
added 2017/07/07 12:0 a.m.39 views

Barracuda WAF V360 Firmware 8.0.1.014 Username / Session ID Leak Vulnerability

The Barracuda WAF management application transmits the current user and session identifier over HTTP GET. Firmware version 8.0.1.014 is affected. Title: Barracuda WAF Management Application Username and Session ID Leak 1. Vulnerability Details Affected Vendor: Barracuda Affected Product: Web...

7AI score
Exploits0
Packet Storm
Packet Storm
added 2017/07/06 12:0 a.m.74 views

Barracuda WAF V360 Firmware 8.0.1.014 Username / Session ID Leak

KL-001-2017-013 : Barracuda WAF Management Application Username and Session ID Leak Title: Barracuda WAF Management Application Username and Session ID Leak Advisory ID: KL-001-2017-013 Publication Date: 2017.07.06 Publication URL: https://www.korelogic.com/Resources/Advisories/KL-001-2017-013.tx...

7.4AI score
Exploits0
Rows per page
Query Builder