CVE-2021-0555

In RenderStruct of protostreamobjectsource.cc, there is a possible crash due to a missing null check. This could lead to remote denial of service with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-11Android ID:...

CVE-2022-0555

Subiquity Shows Guided Storage Passphrase in Plaintext with Read-all Permissions...

ECHO-0555-DB3F-4098

Bulletin has no description...

EUVD-2026-0555

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

Linux Distros Unpatched Vulnerability : CVE-2017-0555

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An information disclosure vulnerability in libavc in Mediaserver could enable a local malicious application to access data outside of its permission levels. Thi...

CVE-2020-0555

Improper input validation for some IntelR Wireless BluetoothR products may allow an authenticated user to potentially enable escalation of privilege via local access...

CVE-2025-0555 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in GitLab

A Cross Site Scripting XSS vulnerability in GitLab-EE affecting all versions from 16.6 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1 allows an attacker to bypass security controls and execute arbitrary scripts in a users browser under specific conditions...

CVE-2025-0555

CVE-2025-0555 is a Cross-Site Scripting (XSS) vulnerability in GitLab-EE affecting all 16.6+ releases up to but not including 17.7.6, 17.8 up to not including 17.8.4, and 17.9 up to not including 17.9.1. The issue allows an attacker to bypass security controls and run arbitrary scripts in a user’...

CVE-2025-0555

Removed by vendor...

GitLab 16.6 < 17.7.6 / 17.8 < 17.8.4 / 17.9 < 17.9.1 (CVE-2025-0555)

The version of GitLab installed on the remote host is affected by a vulnerability, as follows: - A Cross Site Scripting XSS vulnerability in GitLab-EE affecting all versions from 16.6 prior to 17.7.6, 17.8 prior to 17.8.4, and 17.9 prior to 17.9.1 allows an attacker to bypass security controls an...

CVE-2025-0555

creationtimestamp| type| source ---|---|--- 2025-02-27 06:26:45+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lj5b53egjb27 2025-03-02 13:24:32+00:00| seen| https://bsky.app/profile/getpokemon7.bsky.social/post/3ljfjuvjz6c2f 2025-03-03 16:30:35+00:00| published-proof-of-concept...

Photon OS 4.0: Mysql PHSA-2024-4.0-0555

An update of the mysql package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0555. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2022-0555

Subiquity Shows Guided Storage Passphrase in Plaintext with Read-all Permissions...

CVE-2022-0555

CVE-2022-0555 concerns Subiquity, the Ubuntu Server installer. Affected: Subiquity's guided storage handling allows a passphrase to be shown in plaintext with read-all permissions. Root cause details are not explicitly provided in the supplied documents, but the consequence is exposure of the sto...

Moderate Photon OS Security Update - PHSA-2024-4.0-0555

Updates of 'mysql', 'procps-ng' packages of Photon OS have been released...

Oracle Linux 5 : pam (ELSA-2007-0555)

The remote Oracle Linux 5 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2007-0555 advisory. - CVE-2007-3102 - prevent audit log injection through user name 243204 Tenable has extracted the preceding description block directly from the Oracle...

SUSE CVE-2014-0555

Adobe Flash Player before 13.0.0.244 and 14.x and 15.x before 15.0.0.152 on Windows and OS X and before 11.2.202.406 on Linux, Adobe AIR before 15.0.0.249 on Windows and OS X and before 15.0.0.252 on Android, Adobe AIR SDK before 15.0.0.249, and Adobe AIR SDK & Compiler before 15.0.0.249 allow...

WordPress Quick Restaurant 2.0.2 XSS / CSRF / IDOR / Missing Authorization Vulnerabilities

On January 16, 2023, the Wordfence Threat Intelligence team responsibly disclosed several vulnerabilities in Quick Restaurant Menu, a WordPress plugin that allows users to set up restaurant menus on their sites. This plugin is vulnerable to missing authorization, insecure direct object reference,...

Multiple Vulnerabilities Patched in Quick Restaurant Menu Plugin

On January 16, 2023, the Wordfence Threat Intelligence team responsibly disclosed several vulnerabilities in Quick Restaurant Menu, a WordPress plugin that allows users to set up restaurant menus on their sites. This plugin is vulnerable to Missing Authorization, Insecure Direct Object Reference,...

WordPress Quick Restaurant Menu Plugin <= 2.0.2 is vulnerable to Broken Access Control

Software Quick Restaurant Menu Type Plugin Vulnerable versions = 2.0.2 Fixed in 2.1.0 OWASP Top 10 A5: Broken Access Control Classification Broken Access Control CVE CVE-2023-0555 Patch priority High CVSS severity High 8.1 Developer Claim ownership PSID 7bcc03da4182 Credits Marco Wotschka Ivan...