Shodan
Vulnerabilities
Vulnerable Software
Passwork:  Security Vulnerabilities
CVE-2023-49949
Passwork before 6.2.0 allows remote authenticated users to bypass 2FA by sending all one million of the possible 6-digit codes.
CVSS Score
8.1
EPSS Score
0.001
Published
2023-12-26
CVE-2022-42955
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain cleartext cached credentials.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-11-07
CVE-2022-42956
The PassWork extension 5.0.9 for Chrome and other browsers allows an attacker to obtain the cleartext master password.
CVSS Score
7.5
EPSS Score
0.001
Published
2022-11-07
CVE-2022-25266
Passwork On-Premise Edition before 4.6.13 allows migration/downloadExportFile Directory Traversal (to read files).
CVSS Score
4.3
EPSS Score
0.001
Published
2022-03-23
CVE-2022-25267
Passwork On-Premise Edition before 4.6.13 allows migration/uploadExportFile Directory Traversal (to upload files).
CVSS Score
8.8
EPSS Score
0.008
Published
2022-03-23
CVE-2022-25268
Passwork On-Premise Edition before 4.6.13 allows CSRF via the groups, password, and history subsystems.
CVSS Score
8.8
EPSS Score
0.001
Published
2022-03-23
CVE-2022-25269
Passwork On-Premise Edition before 4.6.13 has multiple XSS issues.
CVSS Score
6.1
EPSS Score
0.005
Published
2022-03-23


Products
Pricing
Contact Us

Shodan ® - All rights reserved