CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Kabona AB WebDatorCentral WDC is a Web-based SCADA system from Kabona AB, Sweden. A password plaintext storage vulnerability exists in Kabona AB WDC versions prior to 3.4.0 that originates from the program storing password certificates in plaintext. An attacker could exploit the vulnerability to...

9.8CVSS6.8AI score0.00253EPSS

Exploits0References1

Prion•added 2017/11/07 9:29 p.m.•21 views

Default credentials

A Plaintext Storage of a Password issue was discovered in Kabona AB WebDatorCentral WDC versions prior to Version 3.4.0. WDC stores password credentials in plaintext...

5CVSS7.1AI score0.00253EPSS

Exploits0References1Affected Software1

OSV•added 2017/11/07 9:29 p.m.•0 views

CVE-2016-0872

A Plaintext Storage of a Password issue was discovered in Kabona AB WebDatorCentral WDC versions prior to Version 3.4.0. WDC stores password credentials in plaintext...

9.8CVSS5.8AI score

Exploits0References1

NVD•added 2017/11/07 9:29 p.m.•15 views

CVE-2016-0872

A Plaintext Storage of a Password issue was discovered in Kabona AB WebDatorCentral WDC versions prior to Version 3.4.0. WDC stores password credentials in plaintext...

9.8CVSS9.5AI score0.00253EPSS

Exploits0References1

CVE•added 2017/11/07 9:0 p.m.•52 views

CVE-2016-0872

Kabona AB WebDatorCentral (WDC) versions prior to 3.4.0 store password credentials in plaintext due to plaintext storage of a password (CWE-256). CVE-2016-0872 corresponds to this vulnerability, affecting WDC’s authentication data handling. Public documentation from NVD and CNVD/ICS-CERT indicate...

9.8CVSS9.3AI score0.00253EPSS

Exploits0References1Affected Software1

Cvelist•added 2017/11/07 9:0 p.m.•13 views

CVE-2016-0872

A Plaintext Storage of a Password issue was discovered in Kabona AB WebDatorCentral WDC versions prior to Version 3.4.0. WDC stores password credentials in plaintext...

9.4AI score0.00253EPSS

Exploits0References1

NVD•added 2017/02/13 9:59 p.m.•10 views

CVE-2016-8376

An issue was discovered in Kabona AB WebDatorCentral WDC application prior to Version 3.4.0. This non-validated redirect/non-validated forward OPEN REDIRECT allows chaining with authenticated vulnerabilities...

6.1CVSS6.8AI score0.00251EPSS

Exploits0References2

ATTACKERKB•added 2017/02/13 9:59 p.m.•0 views

CVE-2016-8347

An issue was discovered in Kabona AB WebDatorCentral WDC application prior to Version 3.4.0. WDC does not limit authentication attempts that may allow a brute force attack method...

9.8CVSS5.5AI score0.00945EPSS

Exploits0References3

NVD•added 2017/02/13 9:59 p.m.•11 views

CVE-2016-8356

An issue was discovered in Kabona AB WebDatorCentral WDC application prior to Version 3.4.0. The web server URL inputs are not sanitized correctly, which may allow cross-site scripting vulnerabilities...

8.2CVSS8.5AI score0.00304EPSS

Exploits0References2

ATTACKERKB•added 2017/02/13 9:59 p.m.•0 views

CVE-2016-8356

8.2CVSS5.1AI score0.00304EPSS

Exploits0References3

Prion•added 2017/02/13 9:59 p.m.•12 views

Design/Logic Flaw

An issue was discovered in Kabona AB WebDatorCentral WDC application prior to Version 3.4.0. WDC does not limit authentication attempts that may allow a brute force attack method...

5CVSS7.1AI score0.00945EPSS

Exploits0References2

Prion•added 2017/02/13 9:59 p.m.•10 views

Open redirect

5.8CVSS6.8AI score0.00251EPSS

Exploits0References2

NVD•added 2017/02/13 9:59 p.m.•11 views

CVE-2016-8347

An issue was discovered in Kabona AB WebDatorCentral WDC application prior to Version 3.4.0. WDC does not limit authentication attempts that may allow a brute force attack method...

9.8CVSS9.5AI score0.00945EPSS

Exploits0References2

CVE•added 2017/02/13 9:0 p.m.•49 views

CVE-2016-8376

Summary of CVE-2016-8376 : A non-validated redirect/forward (OPEN REDIRECT) vulnerability in Kabona AB WebDatorCentral (WDC) prior to version 3.4.0. The issue allows an attacker to chain with authenticated vulnerabilities, potentially affecting users via crafted URLs that redirect to a malicious ...

6.1CVSS6.7AI score0.00251EPSS

Exploits0References2Affected Software1

CVE•added 2017/02/13 9:0 p.m.•39 views

CVE-2016-8347

CVE-2016-8347 affects Kabona AB WebDatorCentral (WDC) prior to version 3.4.0. The root cause is improper handling of authentication attempts, allowing unrestricted brute-force attempts against the login API. Reports indicate remote exploitability with no user interaction required, and the impact ...

9.8CVSS9.4AI score0.00945EPSS

Exploits0References2Affected Software1

Cvelist•added 2017/02/13 9:0 p.m.•10 views

CVE-2016-8376

6.2AI score0.00251EPSS

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by