Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-798

CWE-798

High likelihood

Use of Hard-coded Credentials

Parent: CWE-1391 - Use of Weak Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

1,712 vulnerabilities with CWE-798

CVE-2025-4378 CRITICAL

Ataturk University ATA-AOF Mobile App <20.06.2025 - Auth Bypass

CVE-2025-34034 HIGH

Blue Angel Software Suite - Info Disclosure

CVE-2025-45784 CRITICAL

D-Link DPH-400S/SE VoIP Phone 1.01 - Hardcoded Credentials Exposure via Firmware Binary

CVE-2025-34509 HIGH

Sitecore XP/XM 10.1-10.1.4, 10.2, 10.3-10.3.3, 10.4-10.4.1 - Unauthenticated RCE via Hardcoded Credentials

CVE-2025-28388 CRITICAL

OpenC3 COSMOS < 6.0.2 - Use of Hard-coded Credentials

CVE-2025-35940 HIGH

GFI Archiver 15.7-15.8 - Unauthenticated JWT Token Forgery via Hard-coded Signing Key

CVE-2025-5751 MEDIUM

WOLFBOX Level 2 EV Charger Management Card - Unauthenticated Authentication Bypass via Hard-coded Credentials

CVE-2025-3321 CRITICAL

Predefined Administrative Account - Info Disclosure

CVE-2025-5379 MEDIUM

NuCom NC-WR744G 8.5.5 Build 20200530.307 - Hard-Coded Credentials

CVE-2025-4633 MEDIUM

Airpointer 2.4.107-2 - Info Disclosure

CVE-2025-48491 LOW

Project AI <pre-beta - Info Disclosure

CVE-2025-46352 CRITICAL

CS5000 Fire Panel - Info Disclosure

CVE-2025-48748 CRITICAL

Netwrix Directory Manager <10.0.7784.0 - Info Disclosure

CVE-2025-36572 MEDIUM

Dell PowerStoreOS < 4.0.1.3-2494147 - Use of Hard-coded Credentials in Image File

CVE-2025-5164 LOW

PerfreeBlog 4.0.11 - Code Injection

CVE-2025-41380 MEDIUM

Iridium Certus 700 <1.0.1 - Info Disclosure

CVE-2025-2394 MEDIUM

Ecovacs Home <3.3.0 - Info Disclosure

CVE-2025-48414 MEDIUM

eCharge Hardy Barth cPH2 / cPP2 charging stations <= 2.2.0 - Use of Hard-coded Credentials

CVE-2025-48413 HIGH

eCharge Hardy Barth cPH2 / cPP2 charging stations <= 2.2.0 - Use of Hard-coded Credentials

CVE-2025-45746 MEDIUM

ZKT ZKBio CVSecurity 6.4.1_R - Auth Bypass

CVE-2025-27488 MEDIUM

Windows Hardware Lab Kit - Privilege Escalation

CVE-2025-47730 MEDIUM

TeleMessage < 2025-05-05 - Use of Hard-coded Credentials

CVE-2025-20188 CRITICAL

Cisco IOS XE - Unauthenticated Arbitrary File Upload and Remote Code Execution via Hard-coded JWT

CVE-2025-4041 CRITICAL

Optigo Networks ONS NC600 <4.7.2.330 - Command Injection

CVE-2025-32889 HIGH

goTenna Mesh Firmware - Use of Hard-coded Credentials for SMS Verification

Previous Page 11 of 69 Next

Details

Vulnerabilities 1,712

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy