EUVD-2026-0486

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2023-0486

VitalPBX version 3.2.3-8 allows an unauthenticated external attacker to obtain the instance's administrator account via a malicious link. This is possible because the application is vulnerable to XSS...

CVE-2021-0486

In onPackageAddedInternal of PermissionManagerService.java, there is possible access to external storage due to a permissions bypass. This could lead to local escalation of privilege with User execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2020-0486

In openAssetFileListener of ContactsProvider2.java, there is a possible permission bypass due to an insecure default value. This could lead to local escalation of privilege to change contact data with no additional execution privileges needed. User interaction is not needed for...

CVE-2025-0486

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fladmin/login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploi...

CVE-2025-0486

creationtimestamp| type| source ---|---|--- 2025-01-15 20:34:18+00:00| seen| https://infosec.exchange/users/cve/statuses/113834279456805933 2025-01-15 20:54:59+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1861 2025-01-15 21:15:47+00:00| seen|...

CVE-2025-0486 Fanli2012 native-php-cms login.php sql injection

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /fladmin/login.php. The manipulation of the argument username leads to sql injection. The attack can be launched remotely. The exploi...

CVE-2024-0486

creationtimestamp| type| source ---|---|--- 2024-01-13 13:26:31+00:00| seen| https://t.me/ctinow/167821 2024-02-02 14:11:20+00:00| seen| https://t.me/ctinow/178075...

CVE-2024-0486

A vulnerability has been found in code-projects Fighting Cock Information System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/action/addcon.php. The manipulation of the argument chicken leads to sql injection. The attack can be...

CVE-2024-0486

CVE-2024-0486 affects code-projects Fighting Cock Information System 1.0. The vulnerability is in the unknown functionality of the file /admin/action/add_con.php, where manipulation of the parameter aliases/chicken leads to a SQL injection. Exploitation is possible remotely, and public disclosure...

CVE-2024-0486 code-projects Fighting Cock Information System add_con.php sql injection

A vulnerability has been found in code-projects Fighting Cock Information System 1.0 and classified as critical. Affected by this vulnerability is an unknown functionality of the file /admin/action/addcon.php. The manipulation of the argument chicken leads to sql injection. The attack can be...

Important Photon OS Security Update - PHSA-2023-4.0-0486

Updates of 'libX11' packages of Photon OS have been released...

CVE-2023-0486

VitalPBX version 3.2.3-8 allows an unauthenticated external attacker to obtain the instance's administrator account via a malicious link. This is possible because the application is vulnerable to XSS...

CVE-2023-0486

CVE-2023-0486 affects VitalPBX version 3.2.3-8, where an unauthenticated attacker can obtain the instance administrator account via a malicious link due to a cross-site scripting (XSS) flaw. The connected documents consistently identify the same vulnerability and affected version; no official pat...

SUSE CVE-2008-0486

Array index vulnerability in libmpdemux/demuxaudio.c in MPlayer 1.0rc2 and SVN before r25917, and possibly earlier versions, as used in Xine-lib 1.1.10, might allow remote attackers to execute arbitrary code via a crafted FLAC tag, which triggers a buffer overflow...

Mageia: Security Advisory (MGASA-2022-0486)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Important Photon OS Security Update - PHSA-2022-3.0-0486

Updates of 'git' packages of Photon OS have been released...

Security Bulletin: Multiple vulnerabilities in IBM Java SDK affect Tivoli Storage Productivity Center April 2015 CPU

Summary There are multiple vulnerabilities in IBM® SDK Java™ Technology Edition and IBM® Runtime Environment Java™ Technology Edition that is shipped and used by Tivoli Storage Productivity Center. These issues were disclosed as part of the IBM Java SDK updates in April 2015. Vulnerability Detail...

Important Photon OS Security Update - PHSA-2022-0486

Updates of 'curl' packages of Photon OS have been released...

CVE-2022-0486

CVE-2022-0486 affects Fidelis Network and Deception components (CommandPost, Collector, Sensor, Sandbox) where improper file permissions allow a locally privileged attacker to modify affected files and escalate to root. Affected versions are Fidelis Network and Deception prior to 9.4.5; patches/u...