authentication-bypass

Tag

Cards List
#authentication-bypass

Backstage access: an unauthenticated SQL injection in Front Gate Tickets

Lobsters Hottest · 8h ago Cached

A security researcher discovered an unauthenticated SQL injection vulnerability in Front Gate Tickets' device API, allowing full database read and admin access to the ticketing platform for major US festivals.

0 favorites 0 likes
#authentication-bypass

Exploiting vulnerabilities in Johnson and Johnson web apps

Hacker News Top · 2026-06-24 Cached

Security researcher Eaton discloses vulnerabilities in Johnson & Johnson's Campus Recruiting and Audit Tracking Management System web apps, exposing student data and allowing admin takeover due to flawed authentication using hardcoded API keys.

0 favorites 0 likes
#authentication-bypass

A 27-Year-Old Authentication Bypass in OpenBSD's PPP Stack

Lobsters Hottest · 2026-06-17 Cached

A 27-year-old authentication bypass vulnerability in OpenBSD's PPP stack allows an attacker to gain full PPPoE access without credentials by sending zero-length username and password fields, exploiting a missing bounds check in the PAP handler. The same code also permits a kernel heap over-read.

0 favorites 0 likes
#authentication-bypass

Exposing Critical Vulnerabilities in CBSE's On-Screen Marking Portal

Hacker News Top · 2026-05-26 Cached

A security researcher discovered critical vulnerabilities in CBSE's On-Screen Marking portal, including a hardcoded master password and authentication bypass, which could allow full account takeover and tampering with exam evaluations.

0 favorites 0 likes
← Back to home

Submit Feedback