TencentOS Server 2: libxml2 (TSSA-2026:0497)

The version of Tencent Linux installed on the remote TencentOS Server 2 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2026:0497 advisory. Package updates are available for TencentOS Server 2 that fix the following vulnerabilities:...

CVE-1999-0497

creationtimestamp| type| source ---|---|--- 2026-05-06 13:28:27+00:00| seen| https://github.com/rapid7/metasploit-framework/blob/master/modules/auxiliary/scanner/ftp/ftpanonymous.rb...

CVE-2026-0497

creationtimestamp| type| source ---|---|--- 2026-01-13 05:35:19+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mcbthq3ewr2u 2026-01-13 06:48:14+00:00| seen| https://vulnerability.circl.lu/bundle/79cf05e4-8e7e-4859-b145-d69bffb52412...

EUVD-2026-0497

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

Linux Distros Unpatched Vulnerability : CVE-2017-0497

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A denial of service vulnerability in Mediaserver could enable an attacker to use a specially crafted file to cause a device hang or reboot. This issue is rated ...

CVE-2024-0497

A vulnerability was found in Campcodes Student Information System 1.0. It has been classified as critical. Affected is an unknown function of the file /classes/Users.php?f=save. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2010-0497

Disk Images in Apple Mac OS X before 10.6.3 does not provide the expected warning for an unsafe file type in an internet enabled disk image, which makes it easier for user-assisted remote attackers to execute arbitrary code via a package file type...

Linux Distros Unpatched Vulnerability : CVE-2022-0497

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A vulnerbiility was found in Openscad, where a .scad file with no trailing newline could cause an out-of- bounds read during parsing of annotations. CVE-2022-04...

CVE-2025-0497 Rockwell Automation FactoryTalk® AssetCentre Data Exposure Vulnerability

A data exposure vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation FactoryTalk® AssetCentre. The vulnerability exists due to storing credentials in the configuration file of EventLogAttachmentExtractor, ArchiveExtractor, LogCleanUp, or ArchiveLogCleanUp packages...

CVE-2025-0497

creationtimestamp| type| source ---|---|--- 2025-01-30 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-030-05 2025-01-30 17:44:30+00:00| seen| https://infosec.exchange/users/cR0w/statuses/113918546387079493 2025-01-30 17:44:32+00:00| seen|...

Fedora 37 : openscad (2022-2e64749f77)

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2022-2e64749f77 advisory. Automatic update for openscad-2021.01-8.fc37. Changelog Tue Apr 5 2022 Lumr Balhar - 2021.01-8 - Security fixes for CVE-2022-0496 and CVE-2022-0497 ...

CVE-2024-0497

creationtimestamp| type| source ---|---|--- 2024-01-13 19:26:53+00:00| seen| https://t.me/ctinow/167901 2024-02-02 15:11:29+00:00| seen| https://t.me/ctinow/178103 2025-06-10 16:32:05+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17934...

CVE-2024-0497 Campcodes Student Information System sql injection

A vulnerability was found in Campcodes Student Information System 1.0. It has been classified as critical. Affected is an unknown function of the file /classes/Users.php?f=save. The manipulation of the argument username leads to sql injection. It is possible to launch the attack remotely. The...

CVE-2024-0497

CVE-2024-0497 affects Campcodes Student Information System 1.0. The vulnerability is a SQL injection in the file /classes/Users.php?f=save, triggered by manipulating the username argument. It can be exploited remotely and has been publicly disclosed. Affected components are the /classes/Users.php...

CVE-2023-0497

creationtimestamp| type| source ---|---|--- 2023-03-27 20:50:13+00:00| seen| https://t.me/cibsecurity/60812 2025-02-26 19:24:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5580...

CVE-2023-0497

The HT Portfolio WordPress plugin before 1.1.6 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

CVE-2023-0497 HT Portfolio < 1.1.6 - Arbitrary Plugin Activation via CSRF

The HT Portfolio WordPress plugin before 1.1.6 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

CVE-2023-0497 HT Portfolio < 1.1.6 - Arbitrary Plugin Activation via CSRF

The HT Portfolio WordPress plugin before 1.1.6 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

CVE-2023-0497

The CVE concerns HT Portfolio WordPress plugin prior to version 1.1.6 lacking a CSRF check when activating plugins. This CSRF flaw could allow an authenticated attacker to trigger activation of arbitrary plugins by enticing a logged-in admin to visit a malicious page. Publicly available details i...

WordPress HT Portfolio Plugin <= 1.1.5 is vulnerable to Cross Site Request Forgery (CSRF)

Software HT Portfolio Type Plugin Vulnerable versions = 1.1.5 Fixed in 1.1.6 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-0497 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 3421d1e706d1 Credits Lana Codes Required...