EUVD-2026-0487

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2024-0487

A vulnerability was found in code-projects Fighting Cock Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/action/delete-vaccine.php. The manipulation of the argument ref leads to sql injection. The attack may be launched...

CVE-2023-0487

The My Sticky Elements WordPress plugin before 2.0.9 does not properly sanitise and escape a parameter before using it in a SQL statement when deleting messages, leading to a SQL injection exploitable by high privilege users such as admin...

CVE-2025-0487

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /fladmin/catedit.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been...

CVE-2025-0487

creationtimestamp| type| source ---|---|--- 2025-01-15 20:34:19+00:00| seen| https://infosec.exchange/users/cve/statuses/113834279471674308 2025-01-15 20:54:58+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/1860 2025-01-15 21:15:49+00:00| seen|...

CVE-2025-0487 Fanli2012 native-php-cms cat_edit.php sql injection

A vulnerability was found in Fanli2012 native-php-cms 1.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file /fladmin/catedit.php. The manipulation of the argument id leads to sql injection. The attack may be launched remotely. The exploit has been...

Photon OS 3.0: Systemd PHSA-2022-3.0-0487

An update of the systemd package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2022-3.0-0487. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Photon OS 4.0: Curl PHSA-2023-4.0-0487

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0487. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2024-0487

creationtimestamp| type| source ---|---|--- 2024-01-13 14:26:28+00:00| seen| https://t.me/ctinow/167833 2024-02-02 14:11:21+00:00| seen| https://t.me/ctinow/178076...

CVE-2024-0487 code-projects Fighting Cock Information System delete-vaccine.php sql injection

A vulnerability was found in code-projects Fighting Cock Information System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/action/delete-vaccine.php. The manipulation of the argument ref leads to sql injection. The attack may be launched...

CVE-2024-0487

CVE-2024-0487 affects code-projects Fighting Cock Information System 1.0. The vulnerability is a SQL injection in the file /admin/action/delete-vaccine.php caused by manipulation of the ref argument. It can be exploited remotely and has been publicly disclosed. Impact is described as high for con...

Debian: Security Advisory (DLA-53-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-0487

creationtimestamp| type| source ---|---|--- 2023-02-27 18:27:50+00:00| seen| https://t.me/cibsecurity/58948 2025-03-10 14:38:54+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/7009...

CVE-2023-0487

CVE-2023-0487 affects the WordPress plugin My Sticky Elements . The vulnerability arises in versions prior to 2.0.9, where a parameter is not properly sanitised/escaped before being used in a SQL statement when deleting messages, enabling a SQL injection by users with high privileges (e.g., admin...

Wordfence Intelligence CE Weekly Vulnerability Report (Feb 6, 2023 to Feb 12, 2023)

In case you missed it, Wordfence has curated an industry leading vulnerability database with all known WordPress core, theme, and plugin vulnerabilities known as Wordfence Intelligence Community Edition. This database is continuously updated, maintained, and populated by Wordfences highly...

SUSE CVE-2012-0487

Unspecified vulnerability in the MySQL Server component in Oracle MySQL 5.5.x allows remote authenticated users to affect availability via unknown vectors, a different vulnerability than CVE-2012-0117, CVE-2012-0486, CVE-2012-0488, CVE-2012-0489, CVE-2012-0491, CVE-2012-0493, and CVE-2012-0495...

WordPress All-in-one Floating Contact Form – My Sticky Elements Plugin < 2.0.9 is vulnerable to SQL Injection

Software All-in-one Floating Contact Form – My Sticky Elements Type Plugin Vulnerable versions 2.0.9 Fixed in 2.0.9 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-0487 Patch priority Low CVSS severity Low 5.5 Developer Claim ownership PSID cdb7568b0dc6 Credits qerogramat Kak...

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2022-2181)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Critical Photon OS Security Update - PHSA-2022-0487

Updates of 'vim' packages of Photon OS have been released...

Oracle Linux 7 : Unbreakable Enterprise kernel-container (ELSA-2022-9478)

The remote Oracle Linux 7 host has a package installed that is affected by multiple vulnerabilities as referenced in the ELSA-2022-9478 advisory. - perf: Fix sysperfeventopen race against self Peter Zijlstra Orabug: 34207044 CVE-2022-1729 - debug: Lock down kgdb Stephen Brennan Orabug: 34207043...