MiracleLinux 7 : libcmis-0.5.1-2.el7, libpagemaker-0.0.3-1.el7, mdds-0.12.1-1.el7, libreoffice-5.0.6.2-3.el7 (AXSA:2016-852:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2016-852:01 advisory. libcmis LibCMIS is a C client library for working with CM content management interfaces. The primary supported interface which gave the library its...

CVE-2026-0795

creationtimestamp| type| source ---|---|--- 2026-01-09 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-017/ 2026-01-23 07:22:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3md363zrluo2m...

CVE-2025-0795

A vulnerability was found in ESAFENET CDG V5. It has been classified as problematic. This affects an unknown part of the file /todolistjump.jsp. The manipulation of the argument flowId leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to...

CVE-2023-0795

creationtimestamp| type| source ---|---|--- 2025-03-21 19:19:37+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8407...

Linux Distros Unpatched Vulnerability : CVE-2023-0795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibTIFF 4.4.0 has an out-of-bounds read in tiffcrop in tools/tiffcrop.c:3488, allowing attackers to cause a denial-of-service via a crafted tiff file. For users...

Linux Distros Unpatched Vulnerability : CVE-2013-0795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The System Only Wrapper SOW implementation in Mozilla Firefox before 20.0, Firefox ESR 17.x before 17.0.5, Thunderbird before 17.0.5, Thunderbird ESR 17.x befor...

Linux Distros Unpatched Vulnerability : CVE-2016-0795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - LibreOffice before 5.0.5 allows remote attackers to cause a denial of service memory corruption or possibly have unspecified other impact via a crafted...

CVE-2020-0795

creationtimestamp| type| source ---|---|--- 2025-02-28 20:27:16+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/5983 2025-03-02 11:46:29+00:00| seen| Telegram/vAi8NkITchwX7Q8ydE8byXSRE95IlLXgn4RhHCNudzboCEqw...

CVE-2025-0795

A vulnerability was found in ESAFENET CDG V5. It has been classified as problematic. This affects an unknown part of the file /todolistjump.jsp. The manipulation of the argument flowId leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to...

CVE-2025-0795

creationtimestamp| type| source ---|---|--- 2025-01-29 01:31:13+00:00| seen| https://infosec.exchange/users/cve/statuses/113909056961861414 2025-01-29 02:15:47+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lgtvlmtjnj2r 2025-01-29 03:15:08+00:00| seen|...

CVE-2025-0795

CVE-2025-0795 affects ESAFENET CDG V5, where the flowId parameter in /todolistjump.jsp is vulnerable to reflected XSS. The issue potentially allows remote initiation and has publicly disclosed exploit information. Multiple sources (NVD, Red Hat, CVE list, PT Security, CNNVD) corroborate the vulne...

CVE-2025-0795 ESAFENET CDG todolistjump.jsp cross site scripting

A vulnerability was found in ESAFENET CDG V5. It has been classified as problematic. This affects an unknown part of the file /todolistjump.jsp. The manipulation of the argument flowId leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to...

Photon OS 3.0: Linux PHSA-2024-3.0-0795

An update of the linux package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2024-3.0-0795. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

Important Photon OS Security Update - PHSA-2024-3.0-0795

Updates of 'linux-esx', 'linux-aws', 'linux-rt', 'python3', 'linux' packages of Photon OS have been released...

IBM DB2 Db2rcmd.exe Command Execution

This module requires Metasploit: https://metasploit.com/download Current source: https://github.com/rapid7/metasploit-framework class MetasploitModule 'IBM DB2 db2rcmd.exe Command Execution Vulnerability', 'Description' = %q This module exploits a vulnerability in the Remote Command Server...

Photon OS 4.0: Libtiff PHSA-2023-4.0-0417

An update of the libtiff package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2023-4.0-0417. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

CVE-2024-0795

If an attacked was given access to an instance with the admin or manager role there is no backend authentication that would prevent the attacked from creating a new user with an admin role and then be able to use this new account to have elevated privileges on the instance...

CVE-2024-0795

CVE-2024-0795 describes a backend authentication/authorization flaw: if an attacker has admin or manager access, there is no backend check to prevent creating a new admin user, enabling privilege escalation. Multiple sources assign a high impact (CVSS ~7.2). The exact affected products/versions a...

CVE-2024-0795 Create user API role not enforced

If an attacked was given access to an instance with the admin or manager role there is no backend authentication that would prevent the attacked from creating a new user with an admin role and then be able to use this new account to have elevated privileges on the instance...

CVE-2024-0795 Create user API role not enforced

If an attacked was given access to an instance with the admin or manager role there is no backend authentication that would prevent the attacked from creating a new user with an admin role and then be able to use this new account to have elevated privileges on the instance...