|
314421
|
7.5 |
HIGH
Network
|
broadcom
|
bluecoat_security_gateway
|
The web-based Management Console in Blue Coat Security Gateway OS 3.0 through 3.1.3.13 and 3.2.1, when importing a private key, stores the key and its passphrase in plaintext in a log file, which all…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2004-2397
|
2024-02-14 01:17 |
2004-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314422
|
- |
|
myupb
|
ultimate_php_board
|
Ultimate PHP Board (UPB) 1.9 allows remote attackers to execute arbitrary PHP code with UPB administrator privileges via an HTTP request containing the code in the User-Agent header, which is execute…
|
CWE-94
Code Injection
|
CVE-2003-0395
|
2024-02-14 01:14 |
2003-07-2 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314423
|
5.5 |
MEDIUM
Local
|
capturix
|
scanshare
|
Capturix ScanShare 1.06 build 50 stores sensitive information such as the password in cleartext in capturixss_cfg.ini, which is readable by local users.
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2005-2209
|
2024-02-14 01:09 |
2005-07-11 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314424
|
- |
|
-
|
-
|
Rejected reason: **REJECT** Not a valid vulnerability.
|
-
|
CVE-2024-0707
|
2024-02-13 23:15 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314425
|
- |
|
-
|
-
|
Rejected reason: **REJECT** This is a duplicate of CVE-2024-1049. Please use CVE-2024-1049 instead.
|
-
|
CVE-2024-1420
|
2024-02-13 00:15 |
2024-02-13 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314426
|
7.5 |
HIGH
Network
|
phprank
|
phprank
|
phpRank 1.8 stores the administrative password in plaintext on the server and in the "ap" cookie, which allows remote attackers to retrieve the administrative password.
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2002-1800
|
2024-02-10 12:06 |
2002-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314427
|
7.5 |
HIGH
Network
|
audiogalaxy
|
audiogalaxy
|
Autogalaxy stores usernames and passwords in cleartext in cookies, which makes it easier for remote attackers to obtain authentication information and gain unauthorized access via sniffing or a cross…
|
CWE-312
Cleartext Storage of Sensitive Information
|
CVE-2001-1536
|
2024-02-10 12:04 |
2001-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314428
|
- |
|
-
|
-
|
Rejected reason: ** REJECT ** DO NOT USE THIS CVE RECORD. All references and descriptions in this record have been removed to prevent accidental usage.
|
-
|
CVE-2023-6716
|
2024-02-9 18:15 |
2024-02-9 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314429
|
- |
|
georgecurrums
|
open_guestbook
|
Cross-site scripting (XSS) vulnerability in header.php in Open Guestbook 0.5 allows remote attackers to inject arbitrary web script or HTML via the title parameter.
|
CWE-79
Cross-site Scripting
|
CVE-2006-3295
|
2024-02-9 12:26 |
2006-06-29 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
|
314430
|
- |
|
sun
oracle
|
jsse
java_web_start
jre
|
X509TrustManager in (1) Java Secure Socket Extension (JSSE) in SDK and JRE 1.4.0 through 1.4.0_01, (2) JSSE before 1.0.3, (3) Java Plug-in SDK and JRE 1.3.0 through 1.4.1, and (4) Java Web Start 1.0 …
|
CWE-295
Improper Certificate Validation
|
CVE-2003-1229
|
2024-02-9 12:26 |
2003-12-31 |
Show
|
GitHub
Exploit DB
Packet Storm
|
|
|
