CVE-2022-0389

The WP Time Slots Booking Form WordPress plugin before 1.1.63 does not sanitise and escape Calendar names, allowing high privilege users to perform Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed...

EUVD-2026-0389

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2020-0389

In createSaveNotification of RecordingService.java, there is a possible permission bypass due to an unsafe PendingIntent. This could lead to local information disclosure with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10...

Linux Distros Unpatched Vulnerability : CVE-2002-0389

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Pipermail in Mailman stores private mail messages with predictable filenames in a world-executable directory, which allows local users to read private mailing...

Photon OS 4.0: Vim PHSA-2023-4.0-0389

An update of the vim package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0389. The text itself is copyright C VMware, Inc. include'compat.inc'; if description scriptid20315...

RHEL 4 : mailman (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 4 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - mailman: Local users able to read private mailing list archives CVE-2002-0389 Note that Nessus has not tested for...

openSUSE: Security Advisory for apr (SUSE-SU-2023:0389-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2019-0389

creationtimestamp| type| source ---|---|--- 2024-02-13 14:41:15+00:00| seen| https://t.me/ctinow/183836...

SUSE SLES15 Security Update : kernel (Live Patch 33 for SLE 15 SP2) (SUSE-SU-2024:0389-1)

The remote SUSE Linux SLES15 host has a package installed that is affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0389-1 advisory. - A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occur...

CVE-2023-0389

creationtimestamp| type| source ---|---|--- 2024-01-22 23:16:42+00:00| seen| https://t.me/ctinow/171520 2024-02-06 10:41:41+00:00| seen| https://t.me/ctinow/179884...

CVE-2023-0389

The Calculated Fields Form WordPress plugin before 1.1.151 does not sanitise and escape some of its form settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

CVE-2023-0389

CVE-2023-0389 affects the Calculated Fields Form WordPress plugin up to version 1.1.150 (fixed in 1.1.151+). The issue is insufficient sanitisation/escaping of certain form settings, enabling Stored Cross-Site Scripting by high-privilege users (e.g., admins), potentially in multisite setups. Reme...

CVE-2023-0389 Calculated Fields Form < 1.1.151 - Admin+ Stored Cross-Site Scripting via Dropdown Fields

The Calculated Fields Form WordPress plugin before 1.1.151 does not sanitise and escape some of its form settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite set...

CVE-2024-0389

creationtimestamp| type| source ---|---|--- 2024-01-10 15:31:59+00:00| seen| https://t.me/ctinow/165860 2024-01-17 21:16:22+00:00| seen| https://t.me/ctinow/169464 2024-01-28 08:56:20+00:00| seen| https://t.me/ctinow/174860...

CVE-2024-0389

A vulnerability, which was classified as critical, was found in SourceCodester Student Attendance System 1.0. Affected is an unknown function of the file attendancereport.php. The manipulation of the argument classid leads to sql injection. The exploit has been disclosed to the public and may be...

CVE-2024-0389

CVE-2024-0389 affects SourceCodester Client Attendance System 1.0, specifically the file attendance_report.php. The vulnerability arises from unsafely handling the parameter class_id, leading to SQL injection. Exploitation details are publicly disclosed. The CVSS evidence indicates high impact ac...

CVE-2024-0389 SourceCodester Student Attendance System attendance_report.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Student Attendance System 1.0. Affected is an unknown function of the file attendancereport.php. The manipulation of the argument classid leads to sql injection. The exploit has been disclosed to the public and may be...

Oracle Linux 5 : nss_ldap (ELSA-2008-0389)

The remote Oracle Linux 5 host has a package installed that is affected by a vulnerability as referenced in the ELSA-2008-0389 advisory. 253-12 - rebuild 253-11 - backport changes to group parsing from version 254 to fix heap corruption when parsing nested groups 444031 253-10 - remove unnecessar...

SUSE CVE-2013-0389

Unspecified vulnerability in the Server component in Oracle MySQL 5.1.66 and earlier, and 5.5.28 and earlier, allows remote authenticated users to affect availability via unknown vectors related to Server Optimizer...

Important Photon OS Security Update - PHSA-2022-3.0-0389

Updates of 'subversion' packages of Photon OS have been released...