• Skip to primary navigation
  • Skip to main content
CVE Vulnerability

CVE Vulnerability

  • CVE’s
  • Products
  • Vendors

CWE-521

CVE-2022-1775

February 23, 2023 by

Weak Password Requirements in GitHub repository polonel/trudesk prior to 1.2.2.

CVE-2022-1668

February 23, 2023 by

Weak default root user credentials allow remote attackers to easily obtain OS superuser privileges over the open TCP port for SSH.

CVE-2022-1236

February 23, 2023 by

Weak Password Requirements in GitHub repository weseek/growi prior to v5.0.0.

CVE-2022-1039

February 23, 2023 by

The weak password on the web user interface can be exploited via HTTP or HTTPS. Once such access has been obtained, the other passwords can be changed. The weak password on Linux accounts can be accessed via SSH or Telnet, the former of which is by default enabled on trusted interfaces. While the SSH service does not support root login, a user logging in using either of the other Linux accounts may elevate to root access using the su command if they have access to the associated password.

CVE-2023-22451

February 22, 2023 by godfreyd94

Kiwi TCMS is an open source test management system. In version 11.6 and prior, when users register new accounts and/or change passwords, there is no validation in place which would prevent them from picking an easy to guess password. This issue is resolved by providing defaults for the `AUTH_PASSWORD_VALIDATORS` configuration setting. As of version 11.7, the password can’t be too similar to other personal information, must contain at least 10 characters, can’t be a commonly used password, and can’t be entirely numeric. As a workaround, an administrator may reset all passwords in Kiwi TCMS if they think a weak password may have been chosen.

CVE-2023-0793

February 22, 2023 by godfreyd94

Weak Password Requirements in GitHub repository thorsten/phpmyfaq prior to 3.1.11.

  • « Go to Previous Page
  • Go to page 1
  • Interim pages omitted …
  • Go to page 17
  • Go to page 18
  • Go to page 19
  • Go to page 20
  • Go to Next Page »

Copyright CVE Vulnerabilities 2023
Data Sources:

  • NIST
  • MITRE
  • CVE Search
  • Open CVE