Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline

Opendental Security Vulnerabilities

cve
cve

CVE-2016-6531

Open Dental 16.1 and earlier has a hardcoded MySQL root password, which allows remote attackers to obtain administrative access by leveraging access to intranet TCP port 3306. NOTE: the vendor disputes this issue, stating that the "vulnerability note ... is factually false ... there is indeed a...

9.8CVSS

9.2AI Score

0.006EPSS

2016-09-24 10:59 AM
25
cve
cve

CVE-2018-15717

Open Dental before version 18.4 stores user passwords as base64 encoded MD5...

5.3CVSS

5.4AI Score

0.001EPSS

2018-12-12 07:29 PM
22
cve
cve

CVE-2018-15719

Open Dental before version 18.4 installs a mysql database and uses the default credentials of "root" with a blank password. This allows anyone on the network with access to the server to access all database...

9.8CVSS

9.3AI Score

0.002EPSS

2018-12-12 07:29 PM
15
cve
cve

CVE-2018-15718

Open Dental before version 18.4 transmits the entire user database over the network when a remote unauthenticated user accesses the command prompt. This allows the attacker to gain access to usernames, password hashes, privilege levels, and...

7.5CVSS

7.9AI Score

0.003EPSS

2018-12-12 07:29 PM
21