.webp.8407a83ac96563f75e1c428a1f0d4c3e.webp)
.webp.9a04cec050a656fab081ac190f971c3f.webp)
Search the Community
Showing results for tags 'hardcoded'.
Found 15 results
-
Credential Digger is a GitHub scanning tool that identifies hardcoded credentials (Passwords, API Keys, Secret Keys, Tokens, personal information, etc), filtering the false positive data through machine learning models. It supports Python 3.6 and works only with LINUX systems. Architecture Credential Digger finds credentials hardcoded in a repository. The tool is composed of: Postgres database Python client User interface [hide][Hidden Content]]
-
- 2
-
-
- credential
- digger:
- (and 3 more)
-
Western Digital My Book World II NAS versions 1.02.12 and below have a hard-coded ssh credential that allows for remote command execution. View the full article -
Many Cisco devices such as Cisco RV340, Cisco RV340W, Cisco RV345, Cisco RV345P, Cisco RV260, Cisco RV260P, Cisco RV260W, Cisco 160, and Cisco 160W suffer from having hard-coded credentials, known GNU glibc, known BusyBox, and IoT Inspector identified vulnerabilities. View the full article
-
Exploits Zyxel NWA/NAP/WAC Hardcoded Credentials
1337day-Exploits posted a topic in Updated Exploits
An FTP service runs on the Zyxel wireless access point that contains the configuration file for the WiFi network. This FTP server can be accessed with hard-coded credentials that are embedded in the firmware of the AP. When the WiFi network is bound to another VLAN, an attacker can cross the network by fetching the credentials from the FTP server. View the full article -
ProGrade/Lierda Grill Temperature version 1.00_50006 suffers from having hard-coded credentials that allow for denial of service and information disclosure attacks. View the full article
-
Fortinet FortiRecorder versions 2.7.3 and below have a hardcoded password vulnerability. View the full article
-
WolfVision Cynap versions 1.18g and 1.28j suffer from a hardcoded credential vulnerability. View the full article
-
The industrial managed switch series 852 from WAGO is affected by multiple vulnerabilities such as old software components embedded in the firmware. Furthermore, hardcoded password hashes and credentials were also found by doing an automated scan with IoT Inspector. View the full article
-
NC450 version 1.5.0 Build 181022 Rel.3A033D contains a hardcoded root credential within its Linux distribution image. View the full article
-
DASAN H660RM allows for unauthenticated ping access, has a hardcoded key for encryption, and logs sensitive information into /tmp. View the full article
-
Siglent Technologies SDS 1202X-E Digital Oscilloscope version 5.1.3.13 suffers from multiple security vulnerabilities including hardcoded backdoor accounts, missing authentication, and more. View the full article
-
Ricoh myPrint suffers from hardcoded application credential and information disclosure vulnerabilities. The myPrint windows client version 2.9.2.4 and myPrint android client version 2.2.7 are both affected. View the full article
-
MensaMax version 4.3 performs unencrypted transmission and usage of a hardcoded encryption key. View the full article
-
PLANEX CS-QR20 suffers from a hardcoded administrative login credential vulnerability. View the full article
-
PLANEX CS-W50HD suffers from a hardcoded credential vulnerability. View the full article
itsMe