📄 Trojan-Spy.Win32.Small MVID-2026-0705 Remote Command Execution

Trojan-Spy.Win32.Small malware opens a listener on TCP port 65535, allowing unauthenticated remote attackers with network access to execute arbitrary operating system commands on the infected host. Discovery / credits: Malvuln John Page aka hyp3rlinx c 2026 Original source:...

Stripe Payment Plugin for WooCommerce <= 3.7.9 - Unauthenticated SQL Injection

Stripe Payment Plugin for WooCommerce for WordPress versions up to 3.7.9 contains a sqlinjection caused by insufficient escaping and lack of preparation on 'id' parameter, letting unauthenticated attackers execute arbitrary SQL queries, exploit requires sending crafted 'id' parameter. id:...

CVE-2026-0705

creationtimestamp| type| source ---|---|--- 2026-01-27 20:09:20+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdgktidct62j...

CVE-2026-0705

CVE-2026-0705 is a local privilege escalation vulnerability caused by insecure folder permissions. The affected product is Acronis Cloud Manager (Windows) , with versions prior to build 6.4.25342.354 . Multiple sources (NVD, Red Hat, CIRCL, CVE list) corroborate the same issue and affected line, ...

CVE-2021-0705

In sanitizeSbn of NotificationManagerService.java, there is a possible way to keep service running in foreground and keep granted permissions due to Bypass of Background Service Restrictions. This could lead to local escalation of privilege with no additional execution privileges needed. User...

CVE-2025-0705

A vulnerability has been found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as problematic. Affected by this vulnerability is the function qrCode of the file src/main/java/io/github/controller/QrCodeController.java. The manipulation of the argument text lead...

CVE-2013-0705

Directory traversal vulnerability in LSI 3ware Disk Manager 3DM before 2 allows remote attackers to read arbitrary files via unspecified vectors...

CVE-1999-0705

Buffer overflow in INN inews program...

Siemens SCALANCE X-200RNA Switch Devices Improper Input Validation (CVE-2016-0705)

Double free vulnerability in the dsaprivdecode function in crypto/dsa/dsaameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a malformed DSA private key. This plugin onl...

Linux Distros Unpatched Vulnerability : CVE-2016-0705

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Double free vulnerability in the dsaprivdecode function in crypto/dsa/dsaameth.c in OpenSSL 1.0.1 before 1.0.1s and 1.0.2 before 1.0.2g allows remote attackers ...

CVE-2025-0705

creationtimestamp| type| source ---|---|--- 2025-01-24 21:06:16+00:00| seen| https://t.me/cvedetector/16338...

CVE-2025-0705

A vulnerability has been found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as problematic. Affected by this vulnerability is the function qrCode of the file src/main/java/io/github/controller/QrCodeController.java. The manipulation of the argument text lead...

CVE-2025-0705

CVE-2025-0705 affects JoeyBling bootplus: the qrCode function in src/main/java/io/github/controller/QrCodeController.java allows an open redirect via manipulation of the text argument. Descriptions across sources confirm remote attack feasibility with public exploitation details; version details ...

CVE-2025-0705 JoeyBling bootplus QrCodeController.java qrCode redirect

A vulnerability has been found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as problematic. Affected by this vulnerability is the function qrCode of the file src/main/java/io/github/controller/QrCodeController.java. The manipulation of the argument text lead...

CVE-2025-0705 JoeyBling bootplus QrCodeController.java qrCode redirect

A vulnerability has been found in JoeyBling bootplus up to 247d5f6c209be1a5cf10cd0fa18e1d8cc63cf55d and classified as problematic. Affected by this vulnerability is the function qrCode of the file src/main/java/io/github/controller/QrCodeController.java. The manipulation of the argument text lead...

Moderate Photon OS Security Update - PHSA-2024-4.0-0705

Updates of 'linux' packages of Photon OS have been released...

Photon OS 3.0: Gnutls PHSA-2023-3.0-0705

An update of the gnutls package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-3.0-0705. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

openSUSE: Security Advisory for opera (openSUSE-SU-2023:0063-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

openSUSE: Security Advisory for chromium (openSUSE-SU-2023:0045-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Malicious code in wlwz-2312-0705 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware 73f3954b573d83dd29c8986e3c1ba516c13334ae09ce7a131397594793f4eab0 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...