Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Gradio has Open Redirect in OAuth Flow
SODOLA SL902-SWTGW124AS <= 200.1.20 Predictable Session ID
Fleet: Device lock PIN can be predicted if lock time is known
FreeScout's Predictable Authentication Token Enables Account Takeover
Piwigo's secret key can be brute forced
Binardat 10G08-0800GSM Network Switch Predictable Session Identifiers
Cesanta Mongoose DNS Transaction ID dns.c mg_sendnsreq random values
Insecure Credential Generation for Solax Power Pocket WiFi models MQTT Cloud Connection
NervesHub has Insufficient Token Entropy that Allows Authentication Bypass via Brute Force
Jervis has a Weak Random for Timing Attack Mitigation
Appointment Booking Calendar — Simply Schedule Appointments Booking Plugin <= 1.6.9.5 - Unauthenticated Sensitive Information Exposure
libtpms returns wrong initialization vector when certain symmetric ciphers are used
Login Lockdown & Protection <= 2.14 - IP Block Bypass
Predictable Default Wi-Fi Password in EZCast Pro II Dongle
Nextcloud Calendar app used predictable proposal participant tokens
gokey allows secret recovery from a seed file without the master password
An authentication bypass vulnerability has been identified in the IFTTT integration feature
RNP 0.18.0 Vulnerable PKESK session keys
Hydra Booking – All in One Appointment Booking System | Appointment Scheduling, Booking Calendar & WooCommerce Bookings <= 1.1.27 - Unauthenticated...
Reuse of session IDs in oatpp-mcp leads to session hijacking and prompt hijacking by remote attackers
Showing 1 - 20 of 1,000+ results