Lucene search
+L

4 matches found

Vulnrichment
Vulnrichment
added 2026/03/27 8:10 a.m.2 views

CVE-2026-27856

Doveadm credentials are verified using direct comparison which is susceptible to timing oracle attack. An attacker can use this to determine the configured credentials. Figuring out the credential will lead into full access to the affected component. Limit access to the doveadm http service port,...

7.4CVSS5.9AI score0.00392EPSS
Exploits1References1
NVD
NVD
added 2025/12/10 7:16 p.m.5 views

CVE-2025-34429

1Panel versions 1.10.33 - 2.0.15 contain a cross-site request forgery CSRF vulnerability in the web port configuration functionality. The port-change endpoint lacks CSRF defenses such as anti-CSRF tokens or Origin/Referer validation. An attacker can craft a malicious webpage that submits a...

7.1CVSS0.0015EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2023/07/20 12:0 a.m.8 views

PT-2023-7956 · D Link · D-Link G416

Name of the Vulnerable Software and Affected Versions: D-Link G416 affected versions not specified Description: The issue is related to a command injection vulnerability in the flupl pythonmodules of D-Link G416 wireless routers. This vulnerability allows network-adjacent attackers to execute...

8.8CVSS7.7AI score0.00916EPSS
Exploits0References7
CNVD
CNVD
added 2015/10/22 12:0 a.m.6 views

HP ArcSight Logger Brute Force Vulnerability

HP ArcSight Logger is a suite of log management software tools from Hewlett-Packard HP in the United States. The tool collects and integrates data from any log-generating source for log management, searching, indexing, reporting, analysis and retention. A security vulnerability exists in HP...

5CVSS6.8AI score0.04439EPSS
Exploits0References1
Rows per page
Query Builder