Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-798 (使用硬编码的凭证) — Vulnerability Class 549

549 vulnerabilities classified as CWE-798 (使用硬编码的凭证). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2025-41710 Use of Hard-coded Credentials in power analyzer — UMG 96RM-E 24V(5222063) 6.5 Medium2026-03-10
CVE-2026-29023 Keygraph Shannon Hard-coded Router API Key — Shannon 7.3 High2026-03-09
CVE-2026-29120 Insecure, Hardcoded Root Password Stored in Anaconda Configuration File On IDC SFX2100 Satellite Receiver — IDC SFX2100 SuperFlex Satellite Receiver 7.8AIHighAI2026-03-04
CVE-2026-29119 Hardcoded and Insecure Credentials for "Admin" Account providing Telnet Access on IDC SFX2100 Satellite Receiver — SFX2100 Series SuperFlex SatelliteReceiver 9.8AICriticalAI2026-03-04
CVE-2026-28778 Hardcoded FTP Credentials and LPE(via Insecure Permissions) for `xd` Local Account on IDC SFX2100 — IDC SFX2100 SuperFlex Satellite Receiver 9.8AICriticalAI2026-03-04
CVE-2026-28777 Hardcoded and Insecure Credentials for "User" Local Account with SSH Access On IDC SFX2100 Satellite Receiver — SFX2100 Satellite Receiver 9.8AICriticalAI2026-03-04
CVE-2026-28776 Hardcoded and Insecure Credentials for "monitor" account with SSH Access On IDC SFX2100 Satellite Receiver — IDC SFX2100 SuperFlex Satellite Receiver 9.8AICriticalAI2026-03-04
CVE-2026-27167 Gradio: Mocked OAuth Login Exposes Server Credentials and Uses Hardcoded Session Secret — gradio--2026-02-27
CVE-2025-1242 Administrative Credentials Can Be Extracted Through Gardyn API Responses — Home Kit 9.1 Critical2026-02-25
CVE-2025-13776 Hard-coded database credentials in Finka software — Finka-FK 7.8 -2026-02-24
CVE-2026-27507 Binardat 10G08-0800GSM Network Switch Hard-coded Credentials — 10G08-0800GSM Network Switch 9.8 Critical2026-02-24
CVE-2026-2702 Beetel 777VR1 WPA2 PSK hard-coded credentials — 777VR1 3.1 Low2026-02-19
CVE-2026-22769 Dell RecoverPoint for Virtual Machines 信任管理问题漏洞 — RecoverPoint for Virtual Machines 10.0 Critical2026-02-17
CVE-2025-33089 Multiple Vulnerabilities in IBM Concert Software. — Concert 6.5 Medium2026-02-17
CVE-2026-23647 Glory RBG-100 Recycler System Hard-coded OS Credentials — RBG-100 9.8 Critical2026-02-17
CVE-2026-2616 Beetel 777VR1 Web Management hard-coded credentials — 777VR1 8.8 High2026-02-17
CVE-2026-26334 Calero VeraSMART < 2026 R1 Hardcoded Static AES Keys Allow Decryption of Service Credentials — VeraSMART 7.8AIHighAI2026-02-13
CVE-2019-25322 Heatmiser Netmonitor 3.03 - Hardcoded Credentials — Heatmiser Netmonitor 7.5 High2026-02-12
CVE-2026-26218 newbee-mall Default Seeded Administrator Credentials Allow Account Takeover — newbee-mall 9.8 Critical2026-02-12
CVE-2020-37135 AMSS++ 4.7 - Backdoor Admin Account — AMSS++ 7.5 High2026-02-06
CVE-2026-25803 3DP-MANAGER Uses Hard-coded Credentials — 3dp-manager 9.8 Critical2026-02-06
CVE-2026-20111 Cisco Prime Infrastructure Stored Cross-Site Scripting Vulnerability — Cisco Prime Infrastructure 4.8 Medium2026-02-04
CVE-2020-37092 Netis E1+ 1.2.32533 - Backdoor Account (root) — Netis E1+ 7.5 High2026-02-03
CVE-2026-25202 SAMSUNG MagicINFO 9 Server 安全漏洞 — MagicINFO 9 Server 9.8 Critical2026-02-02
CVE-2026-1610 Tenda AX12 Pro V2 Telnet Service hard-coded credentials — AX12 Pro V2 8.1 High2026-01-29
CVE-2025-40537 SolarWinds Web Help Desk Hardcoded Credentials Vulnerability — Web Help Desk 7.5 High2026-01-28
CVE-2026-24840 Dokploy uses hardcoded credentials in installation script, which could result in database access — dokploy 8.0 High2026-01-28
CVE-2026-24346 Use of well-known default credentials in EZCast Pro II Dongle — EZCast Pro II 9.8AICriticalAI2026-01-27
CVE-2025-59107 Static Firmware Encryption Password in dormakaba access manager — Access Manager 92xx-k5 9.1AICriticalAI2026-01-26
CVE-2025-59096 Weak Default Password in dormakaba Kaba exos 9300 — Kaba exos 9300 8.4AIHighAI2026-01-26

Vulnerabilities classified as CWE-798 (使用硬编码的凭证) represent 549 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.