Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
system recovery vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2022-35866
This vulnerability allows remote malicious users to bypass authentication on affected installations of Vinchin Backup and Recovery 6.5.0.17561. Authentication is not required to exploit this vulnerability. The specific flaw exists within the configuration of the MySQL server. The...
Vinchin Vinchin Backup And Recovery 6.5.0.17561
NA
CVE-2023-3007
A vulnerability was found in ningzichun Student Management System 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file resetPassword.php of the component Password Reset Handler. The manipulation of the argument sid leads to weak pas...
Student Management System Project Student Management System 1.0
NA
CVE-2024-0186
A vulnerability classified as problematic has been found in HuiRan Host Reseller System up to 2.0.0. Affected is an unknown function of the file /user/index/findpass?do=4 of the component HTTP POST Request Handler. The manipulation leads to weak password recovery. It is possible ...
Huiran Host Reseller System Project Huiran Host Reseller System
NA
CVE-2023-40760
User enumeration is found in PHP Jabbers Hotel Booking System v4.0. This issue occurs during password recovery, where a difference in messages could allow an malicious user to determine if the user is valid or not, enabling a brute force attack with valid users.
Phpjabbers Hotel Booking System 4.0
NA
CVE-2023-36135
User enumeration is found in in PHPJabbers Class Scheduling System v1.0. This issue occurs during password recovery, where a difference in messages could allow an malicious user to determine if the user is valid or not, enabling a brute force attack with valid users.
Phpjabbers Class Scheduling System 1.0
NA
CVE-2022-20864
A vulnerability in the password-recovery disable feature of Cisco IOS XE ROM Monitor (ROMMON) Software for Cisco Catalyst Switches could allow an unauthenticated, local malicious user to recover the configuration or reset the enable password. This vulnerability is due to a proble...
Cisco Ios Xe Rom Monitor -
NA
CVE-2023-1950
A vulnerability has been found in PHPGurukul BP Monitoring Management System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file password-recovery.php of the component Password Recovery. The manipulation of the argument emailid/c...
Phpgurukul Bp Monitoring Management System 1.0
3.5
CVSSv2
CVE-2008-1484
The password reset feature in PunBB 1.2.16 and previous versions uses predictable random numbers based on the system time, which allows remote authenticated users to determine the new password via a brute force attack on a seed that is based on the approximate creation time of th...
Punbb Punbb 1.0 Alpha
Punbb Punbb 1.0 Beta1
Punbb Punbb 1.1.3
Punbb Punbb 1.1.4
Punbb Punbb 1.0 Beta2
Punbb Punbb 1.0 Beta3
Punbb Punbb 1.0 Rc1
Punbb Punbb 1.1.5
Punbb Punbb 1.0
Punbb Punbb 1.0.1
Punbb Punbb 1.1.1
Punbb Punbb 1.1.2
Punbb Punbb 1.2.11
Punbb Punbb 1.2.12
Punbb Punbb 1.2.4
Punbb Punbb 1.2.5
Punbb Punbb 1.2
Punbb Punbb 1.2.15
Punbb Punbb 1.2.16
Punbb Punbb 1.2.8
Punbb Punbb 1.2.9
Punbb Punbb 1.2.13
1 EDB exploit
5.5
CVSSv2
CVE-2021-20179
A flaw was found in pki-core. An attacker who has successfully compromised a key could use this flaw to renew the corresponding certificate over and over again, as long as it is not explicitly revoked. The highest threat from this vulnerability is to data confidentiality and inte...
Dogtagpki Dogtagpki
Redhat Enterprise Linux 7.0
Redhat Enterprise Linux 8.0
Redhat Certificate System 10.0
Fedoraproject Fedora 32
Fedoraproject Fedora 33
Fedoraproject Fedora 34
5
CVSSv2
CVE-2018-0319
A vulnerability in the password recovery function of Cisco Prime Collaboration Provisioning (PCP) could allow an unauthenticated, remote malicious user to gain unauthorized access to an affected device. The vulnerability is due to insufficient validation of a password recovery re...
Cisco Prime Collaboration Provisioning
Cisco Prime Collaboration
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
NEXT »