Nanobot WhatsApp bridge binds its WebSocket server to all interfaces (0.0.0.0) without authentication (CVSS 10.0), exposing the WhatsApp bridge to remote access.
NVD
GitHub
CVSS 3.1
10.0
EPSS
0.1%
Perl Concierge::Sessions 0.8.1-0.8.4 generates insecure session IDs using weak randomness, enabling session prediction.
Information Disclosure
Concierge
NVD
GitHub
CVSS 3.1
9.8
EPSS
0.1%
ipTIME A6004MX router has an access control vulnerability in VPN client configuration enabling unauthorized network access.
File Upload
Authentication Bypass
NVD
GitHub
VulDB
CVSS 3.1
9.8
EPSS
0.1%
Perl Maypole 2.10-2.13 generates session IDs insecurely using a weak PRNG, enabling session prediction and hijacking.
Information Disclosure
Maypole
NVD
CVSS 3.1
9.8
EPSS
0.1%