5 matches found
Flowise: Weak Default JWT Secrets
Detection Method: Kolega.dev Deep Code Scan | Attribute | Value | |---|---| | Severity | Critical | | Location | packages/server/src/enterprise/middleware/passport/index.ts:29-34 | | Practical Exploitability | High | | Developer Approver | [email protected] | Description JWT secrets have weak...
PT-2023-6585 · Sielco · Sielco Polyeco1000
Name of the Vulnerable Software and Affected Versions: Sielco PolyEco1000 affected versions not specified Description: The issue is related to insufficient restriction of authentication attempts and the use of a weak set of default administrative credentials in the Sielco PolyEco1000 digital...
CVE-2019-9629
Sonatype Nexus Repository Manager before 3.17.0 establishes a default administrator user with weak defaults fixed credentials...
Festival for Linux weak defaults
In default ocnfiguration, it's possible to access local service and execute command with root privileges withou password...
Vonage VoIP phones weak defaults
Administrative interface in available via WAN connection with username/password of user/user...