VulnCheck KEV: CVE-2022-0785

The Daily Prayer Time WordPress plugin before 2022.03.01 does not sanitise and escape the month parameter before using it in a SQL statement via the getmonthlytimetable AJAX action available to unauthenticated users, leading to an unauthenticated SQL injection...

CVE-2026-0785

ALGO 8180 IP Audio Alerter API Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is required to exploit this vulnerability. The specific flaw...

CVE-2026-0785

ALGO 8180 IP Audio Alerter API Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is required to exploit this vulnerability. The specific flaw...

CVE-2026-0785

ALGO 8180 IP Audio Alerter API Command Injection Remote Code Execution Vulnerability. This vulnerability allows remote attackers to execute arbitrary code on affected installations of ALGO 8180 IP Audio Alerter devices. Authentication is required to exploit this vulnerability. The specific flaw...

CVE-2022-0785

The Daily Prayer Time WordPress plugin before 2022.03.01 does not sanitise and escape the month parameter before using it in a SQL statement via the getmonthlytimetable AJAX action available to unauthenticated users, leading to an unauthenticated SQL injection...

CVE-2026-0785

creationtimestamp| type| source ---|---|--- 2026-01-09 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-007/ 2026-01-23 05:02:26+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3md2wc4cwi623 2026-01-23 05:03:02+00:00| seen|...

EUVD-2026-0785

EUVD-2026-0785...

CVE-2023-0785

A vulnerability classified as problematic was found in SourceCodester Best Online News Portal 1.0. Affected by this vulnerability is an unknown functionality of the file checkavailability.php. The manipulation of the argument username leads to exposure of sensitive information through data querie...

SUSE: Security Advisory (SUSE-SU-2025:0785-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-0785

A vulnerability was found in ESAFENET CDG V5 and classified as problematic. This issue affects some unknown processing of the file /SysConfig.jsp. The manipulation of the argument help leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the publi...

CVE-2025-0785

A vulnerability was found in ESAFENET CDG V5 and classified as problematic. This issue affects some unknown processing of the file /SysConfig.jsp. The manipulation of the argument help leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the publi...

CVE-2025-0785

creationtimestamp| type| source ---|---|--- 2025-01-28 21:36:46+00:00| seen| https://infosec.exchange/users/cve/statuses/113908135060417840 2025-01-28 22:15:46+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgti6h6qcl2n 2025-01-28 23:09:48+00:00| seen|...

CVE-2025-0785

Summary: CVE-2025-0785 affects ESAFENET CDG V5, specifically the /SysConfig.jsp file where the user-supplied parameter likely named “help” can be manipulated to trigger cross-site scripting (XSS). The root cause is improper sanitization/handling of the argument, enabling an attacker to inject exe...

CVE-2025-0785 ESAFENET CDG SysConfig.jsp cross site scripting

A vulnerability was found in ESAFENET CDG V5 and classified as problematic. This issue affects some unknown processing of the file /SysConfig.jsp. The manipulation of the argument help leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the publi...

SUSE: Security Advisory (SUSE-SU-2024:0785-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHSA-2024:0785

creationtimestamp| type| source ---|---|--- 2024-02-12 18:16:59+00:00| seen| https://t.me/ctinow/183311...

Security Bulletin: Vulnerabilities in Apache Struts affect the IBM FlashSystem models 840 and 900 (CVE-2016-0785 CVE-2016-2162)

Summary Open Source Apache Struts vulnerabilities were disclosed in March 2016. Struts is used by IBM® FlashSystem™ 840 and IBM FlashSystem 900 in its Service Assistant GUI. Vulnerability Details CVEID: CVE-2016-0785 DESCRIPTION: Apache Struts could allow a remote attacker to execute arbitrary co...

CVE-2021-0785

Android 12 security release notes list CVE-2021-0785 in the System category with Type: Elevation of Privilege (EoP) and Severity: Moderate (Android bug ID A-182283321). The connected document confirms the vulnerability's inclusion but provides no further details on root cause, affected component,...

CVE-2023-0785

creationtimestamp| type| source ---|---|--- 2023-02-12 12:28:50+00:00| seen| https://t.me/cibsecurity/57967...

CVE-2023-0785

CVE-2023-0785 affects SourceCodester Best Online News Portal 1.0, where the vulnerability resides in the file check_availability.php. The issue arises from manipulating the username parameter, leading to exposure of sensitive information via data queries. It is a remote attack with high complexit...