CVE-2026-0498

creationtimestamp| type| source ---|---|--- 2026-01-13 03:02:15+00:00| seen| Telegram/gzP7g7M5unxqeE0obsD0sG4W6mS1OWin9PANHO7snP8yfs 2026-01-13 03:55:11+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mcbnuobokx22 2026-01-13 05:40:38+00:00| seen|...

CVE-2026-0498

CVE-2026-0498 affects SAP S/4HANA (Private Cloud and On-Premise). The vulnerability exists in a function module exposed via RFC, where an attacker with admin privileges can inject arbitrary ABAP code or OS commands, bypassing authorization checks and creating a backdoor that could lead to full sy...

CVE-2021-0498

In memory management driver, there is a possible memory corruption due to a double free. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android SoCAndroid ID: A-183461321...

CVE-2011-0498

Stack-based buffer overflow in Nokia Multimedia Player 1.00.55.5010, and possibly other versions, allows user-assisted remote attackers to cause a denial of service crash and possibly execute arbitrary code via a long entry in a playlist .npl file...

EUVD-2026-0498

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2020-0498

In decodepackedentrynumber of codebook.c, there is a possible out of bounds read due to a heap buffer overflow. This could lead to remote information disclosure with no additional execution privileges needed. User interaction is needed for exploitation.Product: AndroidVersions: Android-11Android...

CVE-2010-0498

Directory Services in Apple Mac OS X before 10.6.3 does not properly perform authorization during processing of record names, which allows local users to gain privileges via unspecified vectors...

Important Photon OS Security Update - PHSA-2025-5.0-0498

Updates of 'iperf' packages of Photon OS have been released...

CVE-2025-0498

A data exposure vulnerability exists in all versions prior to V15.00.001 of Rockwell Automation FactoryTalk® AssetCentre. The vulnerability exists due to insecure storage of FactoryTalk® Security user tokens, which could allow a threat actor to steal a token and, impersonate another user...

CVE-2025-0498

creationtimestamp| type| source ---|---|--- 2025-01-30 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-25-030-05 2025-01-30 17:38:50+00:00| seen| https://infosec.exchange/users/cve/statuses/113918524108862339 2025-01-30 17:44:30+00:00| seen|...

PT-2024-21370 · Evertz Microsystems · Mvip-Ii +4

Name of the Vulnerable Software and Affected Versions: Evertz microsystems MViP-II Firmware version 8.6.5 Evertz microsystems XPS-EDGE- Build 1467 Evertz microsystems evEDGE-EO- Build 0029 Evertz microsystems MMA10G- Build 0498 Evertz microsystems 570IPG-X19-10G Build 0691 Description: The issue...

CVE-2024-0498

A vulnerability was found in Project Worlds Lawyer Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file searchLawyer.php. The manipulation of the argument experience leads to sql injection. The attack can be launched...

CVE-2024-0498 Project Worlds Lawyer Management System searchLawyer.php sql injection

A vulnerability was found in Project Worlds Lawyer Management System 1.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file searchLawyer.php. The manipulation of the argument experience leads to sql injection. The attack can be launched...

CVE-2024-0498

CVE-2024-0498 affects Project Worlds Lawyer Management System v1.0. The vulnerability is in the file searchLawyer.php, where manipulation of the experience parameter enables SQL injection and can be exploited remotely. Public disclosure is noted. The issue is labeled critical in the baseline desc...

CVE-2023-0498

creationtimestamp| type| source ---|---|--- 2023-03-27 20:49:58+00:00| seen| https://t.me/cibsecurity/60800 2025-02-20 01:27:44+00:00| seen| Telegram/-mCSEN5cBzAkLgqUoYwfbGVxB6LRzIVKH7S8hqrqSe9ONLJn...

CVE-2023-0498

The WP Education WordPress plugin before 1.2.7 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

CVE-2023-0498 WP Education < 1.2.7 - Arbitrary Plugin Activation via CSRF

The WP Education WordPress plugin before 1.2.7 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

CVE-2023-0498

CVE-2023-0498 affects the WP Education WordPress plugin prior to 1.2.7. The vulnerability is a CSRF flaw in the plugin activation flow that could allow a CSRF attacker to cause logged-in admins to activate arbitrary plugins on the blog. Remediation: upgrade to WP Education 1.2.7 or later (patched...

CVE-2023-0498 WP Education < 1.2.7 - Arbitrary Plugin Activation via CSRF

The WP Education WordPress plugin before 1.2.7 does not have CSRF check when activating plugins, which could allow attackers to make logged in admins activate arbitrary plugins present on the blog via a CSRF attack...

Security Bulletin: Multiple vulnerabilities in IBM Cognos BI 8.4.1,10.1, 10.1.1 and 10.2 (CVE-2011-3026, CVE-2011-4858, CVE-2012-0498, CVE-2012-2177, CVE-2012-2193, CVE-2012-4835, CVE-2012-4836, CVE-2012-4837, CVE-2012-4840, CVE-2012-4858, CVE-2012-5081)

Summary Several security vulnerabilities have been identified in IBM Cognos BI which may allowing remote attackers to: - Cause a denial of service condition via excessive CPU consumption, - Inject arbitrary JavaScript code into the victim's web browser, - Download arbitrary XML files from the...