CVE-2026-5079

creationtimestamp| type| source ---|---|--- 2026-06-15 14:11:08+00:00| seen| https://bsky.app/profile/ulisesgascon.com/post/3modhmggois27 2026-06-15 16:13:13+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3modohbamvv2h 2026-06-15 18:01:42+00:00| seen|...

CVE-2026-5079 multer vulnerable to Denial of Service via deeply nested field names

Impact: multer versions 1.0.0 through 2.1.1 and 3.0.0-alpha.1 are vulnerable to a Denial of Service via deeply nested field names in multipart form data. The append-field dependency parses bracket notation in field names with no limit on nesting depth, allowing an attacker to force allocation of...

RHSA-2026:5079 Red Hat Security Advisory: rhc security update

Bulletin has no description...

MiracleLinux 3 : kernel-2.6.18-53.21AXS3 (AXSA:2009-22:03)

The remote MiracleLinux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2009-22:03 advisory. The kernel package contains the Linux kernel vmlinuz, the core of any Linux operating system. The kernel handles the basic functions of the operating...

RHSA-2024:5079

creationtimestamp| type| source ---|---|--- 2025-08-30 07:23:43+00:00| seen| Telegram/b0lt1wyEA5u1X-xrLrDQZXINiV4kRcjDGE3c1nhlwqYN-Y 2025-09-02 16:24:48+00:00| seen| Telegram/A3KQQeqOaMv6WzbgX7aaVKzREyQzcmIHka6Ks55GpgRBY...

CVE-2024-5079

The wp-eMember WordPress plugin before 10.6.7 does not sanitise and escape some of the fields when members register, which allows unauthenticated users to perform Stored Cross-Site Scripting attacks...

CVE-2023-5079

Lenovo LeCloud App improper input validation allows attackers to access arbitrary components and arbitrary file downloads, which could result in information disclosure...

CVE-2025-5079

A flaw has been found in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/updateorder.php. Executing manipulation of the argument remark can lead to sql injection. The attack may be performed from remote. The exploit ha...

CVE-2025-5079

A flaw has been found in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/updateorder.php. Executing manipulation of the argument remark can lead to sql injection. The attack may be performed from remote. The exploit ha...

CVE-2025-5079 PHPGurukul/Campcodes Online Shopping Portal updateorder.php sql injection

A flaw has been found in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/updateorder.php. Executing manipulation of the argument remark can lead to sql injection. The attack may be performed from remote. The exploit ha...

CVE-2025-5079 PHPGurukul/Campcodes Online Shopping Portal updateorder.php sql injection

A flaw has been found in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected by this vulnerability is an unknown functionality of the file /admin/updateorder.php. Executing manipulation of the argument remark can lead to sql injection. The attack may be performed from remote. The exploit ha...

CVE-2011-5079

Open redirect vulnerability in the Modern FAQ irfaq extension 1.1.2 and other versions before 1.1.4 for TYPO3 allows remote attackers to redirect users to arbitrary web sites and conduct phishing attacks via a URL, probably in the "return url parameter."...

SurrealDB has an Uncaught Exception Handling Nonexistent Role

Roles for system users are stored as generic Ident values and converted as strings and into the Role enum whenever IAM operations are to be performed that require processing the user roles. This conversion expects those identifiers to only contain the values owner, editor and viewer and will retu...

CentOS 7 : kernel-alt (RHSA-2020:5079)

The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2020:5079 advisory. - A flaw was found in the Linux kernel's implementation of biovecs in versions before 5.9-rc7. A zero-length biovec request issued by the block subsystem could...

CVE-2024-5079 WP eMember < 10.6.7 - Unauthenticated Stored XSS via Member Registration

The wp-eMember WordPress plugin before 10.6.7 does not sanitise and escape some of the fields when members register, which allows unauthenticated users to perform Stored Cross-Site Scripting attacks...

CVE-2024-5079 WP eMember < 10.6.7 - Unauthenticated Stored XSS via Member Registration

The wp-eMember WordPress plugin before 10.6.7 does not sanitise and escape some of the fields when members register, which allows unauthenticated users to perform Stored Cross-Site Scripting attacks...

CVE-2019-5079

creationtimestamp| type| source ---|---|--- 2024-03-16 06:46:23+00:00| seen| https://t.me/ctinow/209361...

CVE-2023-5079

CVE-2023-5079 concerns Lenovo LeCloud App. Multiple connected sources confirm an improper input validation vulnerability that allows attackers to access arbitrary components and download arbitrary files, potentially leading to information disclosure. The NVD entry attributes a CVSS v3.1 base scor...

Ubuntu: Security Advisory (USN-714-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

USN-5079-3: curl vulnerabilities | Cloud Foundry

Severity Unknown Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 18.04 Description USN-5079-1 introduced a regression in curl. Affected Cloud Foundry Products and Versions Severity is unknown unless otherwise noted. Bionic Stemcells 1.x versions prior to 1.31 All other stemcells not...