CVE-2026-0585

creationtimestamp| type| source ---|---|--- 2026-01-05 11:01:52+00:00| published-proof-of-concept| Telegram/42OKHkBApS4mgO59EKytcRZHRi0oZ5Ka-rfpAtjEf0rIk...

CVE-2026-0585

A security vulnerability has been detected in code-projects Online Product Reservation System 1.0. Impacted is an unknown function of the file /orderview.php of the component GET Parameter Handler. Such manipulation of the argument transactionid leads to sql injection. The attack can be executed...

EUVD-2026-0585

This CVE ID was rejected because it was reserved but not used for a vulnerability disclosure...

CVE-2024-0585

The Essential Addons for Elementor – Best Elementor Templates, Widgets, Kits & WooCommerce Builders plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's Filterable Gallery widget in all versions up to, and including, 5.9.4 due to insufficient input sanitization and...

CVE-2023-0585

The All in One SEO Pack plugin for WordPress is vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 4.2.9 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers with Administrator role or above...

CVE-2021-0585

In beginWrite and beginRead of MessageQueueBase.h, there is a possible out of bounds write due to improper input validation. This could lead to local escalation of privilege with System execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions:...

CVE-2025-0585

creationtimestamp| type| source ---|---|--- 2025-01-20 02:22:42+00:00| seen| https://infosec.exchange/users/cve/statuses/113858298647796799 2025-01-20 03:15:48+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lg5eqnqbm52w 2025-01-20 03:53:02+00:00| seen|...

CVE-2025-0585 aEnrich Technology a+HRD - SQL Injection

The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

CVE-2025-0585

CVE-2025-0585 affects the a+HRD product from aEnrich Technology with a SQL Injection vulnerability that allows unauthenticated remote attackers to read, modify, and delete database contents. Connected sources corroborate a SQLi issue but vary on affected versions; CNNVD cites a+HRD 7.5 and prior,...

CVE-2025-0585 aEnrich Technology a+HRD - SQL Injection

The a+HRD from aEnrich Technology has a SQL Injection vulnerability, allowing unauthenticated remote attackers to inject arbitrary SQL commands to read, modify, and delete database contents...

Photon OS 4.0: Curl PHSA-2024-4.0-0585

An update of the curl package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-4.0-0585. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2024-0585

creationtimestamp| type| source ---|---|--- 2024-02-05 23:31:37+00:00| seen| https://t.me/ctinow/179605 2024-02-29 15:21:41+00:00| seen| https://t.me/ctinow/196720...

CVE-2024-0585

CVE-2024-0585 concerns the WordPress plugin Essential Addons for Elementor – Lite/Pro (Best Elementor Templates, Widgets, Kits & WooCommerce Builders). It describes a Stored Cross-Site Scripting (XSS) flaw in the plugin’s Filterable Gallery widget caused by insufficient input sanitization and out...

RHSA-2024:0585

creationtimestamp| type| source ---|---|--- 2024-01-30 14:21:36+00:00| seen| https://t.me/ctinow/175915...

Important Photon OS Security Update - PHSA-2023-3.0-0585

Updates of 'linux', 'linux-aws', 'linux-rt', 'linux-secure', 'linux-esx' packages of Photon OS have been released...

Amazon Linux 2023 : wireshark-cli, wireshark-devel (ALAS2023-2023-038)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2023-038 advisory. A NULL pointer exception flaw was found in Wireshark. A process failure on crafted or malformed input in the IPPUSB dissector can cause a denial of service via a packet injection or a crafted...

WordPress All in One SEO Pack Plugin < 4.3.0 Multiple XSS Vulnerabilities

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:aioseo:allinoneseo"; if description...

WordPress All In One SEO Pack 4.2.9 Cross Site Scripting Vulnerability

Affected Plugin: All In One SEO Pack Plugin Slug: all-in-one-seo-pack Affected Versions: = 4.2.9 CVE ID: CVE-2023-0586 CVSS Score: 6.4 Medium CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N Researcher/s: Ivan Kuzymchak Fully Patched Version: 4.3.0 The All in One SEO Pack plugin for...

WordPress All In One SEO Pack Plugin <= 4.2.9 is vulnerable to Cross Site Scripting (XSS)

Software All In One SEO Pack Type Plugin Vulnerable versions = 4.2.9 Fixed in 4.3.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-0585 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 21a22db087a8 Credits WordFence Required...

CVE-2023-0585

creationtimestamp| type| source ---|---|--- 2023-02-24 18:19:26+00:00| seen| https://t.me/cibsecurity/58879...