89 matches found
EUVD-2026-0275
This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...
TencentOS Server 4: buildah (TSSA-2025:0275)
The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2025:0275 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...
CVE-2025-0275
HCL BigFix Mobile 3.3 and earlier is affected by improper access control. Unauthorized users can access a small subset of endpoint actions, potentially allowing access to select internal functions...
CVE-2025-0275
creationtimestamp| type| source ---|---|--- 2025-10-16 06:16:17+00:00| seen| Telegram/Tz9DPk2FYmGzHnCBoa2nsugM7slQqiMZi7nJx2yw2Nveu4...
CVE-2020-0275
In MediaProvider, there is a possible way to access ContentResolver and MediaStore entries the app shouldn't have access to due to a permissions bypass. This could lead to local escalation of privilege, with no additional execution privileges needed. User interaction is not needed for...
CVE-2009-0275
Static code injection vulnerability in admin.php in Ryneezy phoSheezy 0.2 allows remote authenticated administrators to inject arbitrary PHP code into config/header via the header parameter. NOTE: this can be exploited by unauthenticated attackers by leveraging CVE-2009-0250. NOTE: the provenance...
RHEL 9 : Red Hat OpenStack Platform 17.0 (openstack-neutron) (RHSA-2023:0275)
The remote Redhat Enterprise Linux 9 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2023:0275 advisory. OpenStack Networking neutron is a virtual network service for OpenStack. Just as OpenStack Compute nova provides an API to dynamically request and...
openSUSE: Security Advisory for rubygem (SUSE-SU-2023:0275-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
CVE-2024-0275
creationtimestamp| type| source ---|---|--- 2024-01-07 13:31:48+00:00| seen| https://t.me/ctinow/164101 2024-01-08 21:17:05+00:00| seen| https://t.me/ctinow/164631 2024-01-24 20:46:54+00:00| seen| https://t.me/ctinow/173069...
CVE-2024-0275
CVE-2024-0275 documents a SQL injection in Kashipara Food Management System up to v1.0, caused by unsafely handling the id parameter in item_edit_submit.php. The vulnerability allows remote attackers to inject SQL statements, potentially exposing database data. Multiple referenced sources (NVD en...
CVE-2024-0275 Kashipara Food Management System item_edit_submit.php sql injection
A vulnerability was found in Kashipara Food Management System up to 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file itemeditsubmit.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit...
CVE-2023-0275
creationtimestamp| type| source ---|---|--- 2023-02-13 18:35:59+00:00| seen| https://t.me/cibsecurity/58005...
CVE-2023-0275 Easy Accept Payments for PayPal < 4.9.10 - Contributor+ Stored XSS
The Easy Accept Payments for PayPal WordPress plugin before 4.9.10 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site...
WordPress Easy Accept Payments Plugin < 4.9.10 is vulnerable to Cross Site Scripting (XSS)
Software Easy Accept Payments Type Plugin Vulnerable versions 4.9.10 Fixed in 4.9.10 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0275 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 334f1469f03f Credits Lana Codes...
Important Photon OS Security Update - PHSA-2022-0275
Updates of 'linux-aws', 'linux-secure', 'linux', 'linux-rt' packages of Photon OS have been released...
Important Photon OS Security Update - PHSA-2022-4.0-0275
Updates of 'linux-rt', 'linux-esx', 'linux-aws', 'linux-secure' packages of Photon OS have been released...
CVE-2022-26233
Barco Control Room Management through Suite 2.9 Build 0275 was discovered to be vulnerable to directory traversal, allowing attackers to access sensitive information and components. Requests must begin with the "GET /...." substring...
Trojan.Win32.Inject.adwas Insecure Permissions
Discovery / credits: Malvuln - malvuln.com c 2021 Original source: https://malvuln.com/advisory/acfce60da9031e00c22818f2616d6424.txt Contact: [email protected] Media: twitter.com/malvuln Threat: Trojan.Win32.Inject.adwas Vulnerability: Insecure Permissions Description: The malware creates a dir...
CVE-2021-0275 Junos OS: J-Web: Cross-site scripting attack allows an attacker to gain control of another users session.
A Cross-site Scripting XSS vulnerability in J-Web on Juniper Networks Junos OS allows an attacker to target another user's session thereby gaining access to the users session. The other user session must be active for the attack to succeed. Once successful, the attacker has the same privileges as...
CVE-2021-0275
The CVE-2021-0275 entry identifies a Cross-site Scripting (XSS) vulnerability in Juniper Networks Junos OS J-Web that can hijack another active user session and potentially grant full device control if the compromised user has root privileges. Affected are Junos OS versions across multiple series...