Security
Headlines
HeadlinesLatestCVEs

Headline

CVE-2023-41646: GitHub - tristao-marinho/CVE-2023-41646

Buttercup v2.20.3 allows attackers to obtain the hash of the master password for the password manager via accessing the file /vaults.json/

CVE
Open in Source
#vulnerability#web#linux#cisco#nodejs#js#git#auth

Skip to content

Sign up

    • Actions

      Automate any workflow

    • Packages

      Host and manage packages

    • Security

      Find and fix vulnerabilities

    • Codespaces

      Instant dev environments

    • Copilot

      Write better code with AI

    • Code review

      Manage code changes

    • Issues

      Plan and track work

    • Discussions

      Collaborate outside of code

Explore

*   All features
*   Documentation
*   GitHub Skills
*   Blog

  • For

    • Enterprise
    • Teams
    • Startups
    • Education

    By Solution

    • CI/CD & Automation
    • DevOps
    • DevSecOps

    Resources

    • Customer Stories
    • White papers, Ebooks, Webinars
    • Partners

    • GitHub Sponsors

      Fund open source developers

*   The ReadME Project
    
    GitHub community articles
    

Repositories

*   Topics
*   Trending
*   Collections
  • Pricing

Search code, repositories, users, issues, pull requests…

Provide feedback

We read every piece of feedback, and take your input very seriously.

Include my email address so I can be contacted

Saved searches****Use saved searches to filter your results more quickly

Sign in

Sign up

tristao-marinho / CVE-2023-41646 Public

  • Notifications
  • Fork 0
  • Star 0

0 stars 0 forks Activity

Star

Notifications

  • Code
  • Issues
  • Pull requests
  • Actions
  • Projects
  • Security
  • Insights

More

main

Switch branches/tags

Name already in use

A tag already exists with the provided branch name. Many Git commands accept both tag and branch names, so creating this branch may cause unexpected behavior. Are you sure you want to create this branch?

1 branch 0 tags

Code

  • Clone

    Use Git or checkout with SVN using the web URL.

  • Open with GitHub Desktop

  • Download ZIP

Latest commit

tristao-marinho Create README.md

eb5a04c

Sep 1, 2023

Create README.md

eb5a04c

Git stats

  • 1 commit

FilesPermalink

Failed to load latest commit information.

Type

Name

Latest commit message

Commit time

README.md

CVE-2023-41646 Buttercup v2.20.3 Buttercup Password Mangement =========================POC=========================

README.md

CVE-2023-41646****Buttercup v2.20.3 Buttercup Password Mangement

#Title:Buttercup v2.20.3
#Date: 2023-09-01
#Author: Francisco Marinho
#Vendor Homepage: https://buttercup.pw/
#Software link:https://buttercup.pw/
#Version: v2.20.3
#Tested on: Linux

**=========================POC=========================
**

Buttercup v2.20.3 allows attackers to obtain the hash of the master password for the password manager via accessing the file /vaults.json/

##Example cat ~/local/share/Buttercup-nodejs/vaults.json

About

No description, website, or topics provided.

Resources

Readme

Activity

Stars

0 stars

Watchers

1 watching

Forks

0 forks

Report repository

Releases

No releases published

Packages

No packages published

CVE: Latest News

CVE-2023-50976: Transactions API Authorization by oleiman · Pull Request #14969 · redpanda-data/redpanda
CVE
CVE-2023-6905
CVE
CVE-2023-6903
CVE
CVE-2023-6904
CVE
CVE-2023-3907
CVE