CVE-2026-0541

creationtimestamp| type| source ---|---|--- 2026-05-12 08:59:39+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mlngenq6cc2p 2026-05-12 14:16:19+00:00| seen| https://bsky.app/profile/o2cloud.bsky.social/post/3mlnxzftvs62e...

EUVD-2026-0541

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

Photon OS 5.0: Coredns PHSA-2025-5.0-0541

An update of the coredns package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2025-5.0-0541. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2021-0541

In phNxpNciHalextprocessnfcinitrsp of phNxpNciHalext.cc, there is a possible out of bounds read due to a missing bounds check. This could lead to local information disclosure in the NFC server with System execution privileges needed. User interaction is not needed for exploitation.Product:...

CVE-2020-0541

Out-of-bounds write in subsystem for IntelR CSME versions before 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow a privileged user to potentially enable escalation of privilege via local access...

Linux Distros Unpatched Vulnerability : CVE-2011-0541

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - fuse 2.8.5 and earlier does not properly handle when /etc/mtab cannot be updated, which allows local users to unmount arbitrary directories via a symlink attack...

CVE-2025-0541 Codezips Gym Management System edit_member.php sql injection

A vulnerability was found in Codezips Gym Management System 1.0 and classified as critical. This issue affects some unknown processing of the file /dashboard/admin/editmember.php. The manipulation of the argument name leads to sql injection. The attack may be initiated remotely. The exploit has...

Photon OS 3.0: Imagemagick PHSA-2023-3.0-0541

An update of the ImageMagick package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0541. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

SUSE SLES12 Security Update : postgresql13 (SUSE-SU-2024:0541-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0541-1 advisory. - Late privilege drop in REFRESH MATERIALIZED VIEW CONCURRENTLY in PostgreSQL allows an object creator to execute arbitrary SQL functions as...

CVE-2024-0541

CVE-2024-0541 affects Tenda W9, version 1.0.0.7(4456). The vulnerability is in the httpd component’s function formAddSysLogRule , where manipulating the argument sysRulenEn triggers a stack-based overflow. The flaw is exploitable remotely and an exploit has been publicly disclosed. Multiple sourc...

K12445504: Intel CSME vulnerabilities CVE-2020-0541, CVE-2020-0542, CVE-2020-0545

Security Advisory Description CVE-2020-0541 Out-of-bounds write in subsystem for IntelR CSME versions before 12.0.64, 13.0.32, 14.0.33 and 14.5.12 may allow a privileged user to potentially enable escalation of privilege via local access. CVE-2020-0542 Improper buffer restrictions in subsystem fo...

CVE-2023-0541 GS Books Showcase < 1.3.1 - Contributor+ Stored XSS

The GS Books Showcase WordPress plugin before 1.3.1 does not validate and escape some of its shortcode attributes before outputting them back in a page/post where the shortcode is embed, which could allow users with the contributor role and above to perform Stored Cross-Site Scripting attacks...

CVE-2023-0541

GS Books Showcase WordPress plugin prior to 1.3.1 is vulnerable to Stored XSS via shortcode attributes (requires Contributor+). Patchfix: upgrade to version 1.3.1 or later, which resolves the issue per Patchstack entry for CVE-2023-0541.

SUSE CVE-2014-0541

Adobe Flash Player before 13.0.0.241 and 14.x before 14.0.0.176 on Windows and OS X and before 11.2.202.400 on Linux, Adobe AIR before 14.0.0.178 on Windows and OS X and before 14.0.0.179 on Android, Adobe AIR SDK before 14.0.0.178, and Adobe AIR SDK & Compiler before 14.0.0.178 allow attackers t...

WordPress GS Books Showcase Plugin < 1.3.1 is vulnerable to Cross Site Scripting (XSS)

Software GS Books Showcase Type Plugin Vulnerable versions 1.3.1 Fixed in 1.3.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0541 Patch priority Medium CVSS severity Medium 6.5 Developer Claim ownership PSID 7768af0764d3 Credits István Márton...

Important Photon OS Security Update - PHSA-2022-0541

Updates of 'go' packages of Photon OS have been released...

Security Updates for Microsoft Office Products C2R (January 2019)

The Microsoft Office Products are missing security updates. It is, therefore, affected by multiple vulnerabilities: - A remote code execution vulnerability exists in the way that the MSHTML engine improperly validates input. An attacker could execute arbitrary code in the context of the current...

CVE-2022-0541

The flo-launch WordPress plugin before 2.4.1 injects code into wp-config.php when creating a cloned site, allowing any attacker to initiate a new site install by setting the flocustomtableprefix cookie to an arbitrary value...

CVE-2022-0541

The CVE-2022-0541 issue affects the flo-launch WordPress plugin prior to 2.4.1. The vulnerability arises when the plugin injects code into wp-config.php during clone-site creation, enabling an attacker to start a new WordPress installation by setting the flo_custom_table_prefix cookie. Impact is ...

VulnCheck KEV: CVE-2019-0541

Microsoft MSHTML engine contains an improper input validation vulnerability that allows for remote code execution vulnerability...