Vulnerabilities > Improper Authentication
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-01-08 | CVE-2019-20360 | Improper Authentication vulnerability in Givewp A flaw in Give before 2.5.5, a WordPress plugin, allowed unauthenticated users to bypass API authentication methods and access personally identifiable user information (PII) including names, addresses, IP addresses, and email addresses. | 7.5 |
| 2020-01-07 | CVE-2013-5122 | Improper Authentication vulnerability in Cisco products Cisco Linksys Routers EA2700, EA3500, E4200, EA4500: A bug can cause an unsafe TCP port to open which leads to unauthenticated access | 9.8 |
| 2019-12-31 | CVE-2018-19834 | Improper Authentication vulnerability in Bombba Project Bombba The quaker function of a smart contract implementation for BOMBBA (BOMB), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity. | 7.5 |
| 2019-12-31 | CVE-2018-19833 | Improper Authentication vulnerability in DDQ Project DDQ The owned function of a smart contract implementation for DDQ, an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity. | 7.5 |
| 2019-12-31 | CVE-2018-19832 | Improper Authentication vulnerability in Newinteltechmedia Project Newinteltechmedia The NETM() function of a smart contract implementation for NewIntelTechMedia (NETM), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity. | 7.5 |
| 2019-12-31 | CVE-2018-19831 | Improper Authentication vulnerability in Cryptbond Network Project Cryptbond Network The ToOwner() function of a smart contract implementation for Cryptbond Network (CBN), an tradable Ethereum ERC20 token, allows attackers to change the owner of the contract, because the function does not check the caller's identity. | 7.5 |
| 2019-12-30 | CVE-2018-20489 | Improper Authentication vulnerability in Gitlab An issue was discovered in GitLab Community and Enterprise Edition before 11.4.13, 11.5.x before 11.5.6, and 11.6.x before 11.6.1. | 5.3 |
| 2019-12-27 | CVE-2013-4982 | Improper Authentication vulnerability in Avtech Avn801 DVR Firmware 1017100310091003 AVTECH AVN801 DVR has a security bypass via the administration login captcha | 9.8 |
| 2019-12-27 | CVE-2013-4976 | Improper Authentication vulnerability in Hikvision Ds-2Cd7153-E Firmware Hikvision DS-2CD7153-E IP Camera has security bypass via hardcoded credentials | 9.8 |
| 2019-12-27 | CVE-2013-4621 | Improper Authentication vulnerability in Magdevgroup Magnolia CMS Magnolia CMS before 4.5.9 has multiple access bypass vulnerabilities | 9.8 |