CVE-2026-0875

creationtimestamp| type| source ---|---|--- 2026-02-18 05:00:00+00:00| seen| http://www.zerodayinitiative.com/advisories/ZDI-26-107/ 2026-02-18 20:24:05+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mf5vw3yajl2s...

MiracleLinux 4 : systemtap-1.6-5.0.1.AXS4 (AXSA:2012-356:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2012-356:01 advisory. SystemTap is an instrumentation system for systems running Linux 2.6. Developers can write instrumentation to collect data on the operation of the system...

CVE-2021-0875

In PVRSRVBridgeChangeSparseMem of the PowerVR kernel driver, a missing size check means there is a possible integer overflow that could allow out-of-bounds heap access. This could lead to local escalation of privilege with no additional execution privileges needed. User interaction is not needed...

EUVD-2023-0875

Malicious code in bioql PyPI...

CVE-2025-0875

creationtimestamp| type| source ---|---|--- 2025-09-22 15:45:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lzgqutgt6q2t...

CVE-2025-0875 IDOR in Proliz Software's OBS

Authorization Bypass Through User-Controlled Key vulnerability in PROLIZ Computer Software Hardware Service Trade Ltd. Co. OBS Student Affairs Information System allows Parameter Injection.This issue affects OBS Student Affairs Information System: before v26.0328...

Linux Distros Unpatched Vulnerability : CVE-2013-0875

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The ffaddpngpaethprediction function in libavcodec/pngdec.c in FFmpeg before 1.1.3 allows remote attackers to have an unspecified impact via a crafted PNG image...

CVE-2024-0875

creationtimestamp| type| source ---|---|--- 2024-11-15 13:15:34+00:00| seen| https://t.me/cvedetector/11059...

CVE-2024-0875

A stored cross-site scripting XSS vulnerability exists in openemr/openemr version 7.0.1. An attacker can inject malicious payloads into the 'inputBody' field in the Secure Messaging feature, which can then be sent to other users. When the recipient views the malicious message, the payload is...

CVE-2024-0875 Stored XSS in openemr/openemr

A stored cross-site scripting XSS vulnerability exists in openemr/openemr version 7.0.1. An attacker can inject malicious payloads into the 'inputBody' field in the Secure Messaging feature, which can then be sent to other users. When the recipient views the malicious message, the payload is...

CVE-2024-0875

CVE-2024-0875 affects OpenEMR/OpenEMR v7.0.1, where a stored XSS in the Secure Messaging feature allows injection into the inputBody field and execution when recipients view the message, potentially compromising accounts. The issue is fixed in v7.0.2.1. Affected component: Secure Messaging, vulne...

Moxa EDR-G903 Secure Router Privilege Escalation (CVE-2016-0875)

Moxa Secure Router EDR-G903 devices before 3.4.12 allow remote attackers to read configuration and log files via a crafted URL. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

CVE-2021-0875

CVE-2021-0875 affects the PowerVR GPU stack (PVRSRVBridgeChangeSparseMem in the PowerVR kernel driver). The issue is a missing size check that can cause an integer overflow, enabling out-of-bounds heap access. This could lead to local elevation of privilege with no additional execution privileges...

CVE-2023-0875

creationtimestamp| type| source ---|---|--- 2023-03-20 21:04:24+00:00| seen| https://t.me/cibsecurity/60337...

CVE-2023-0875

The WP Meta SEO WordPress plugin before 4.5.3 does not properly sanitize and escape inputs into SQL queries, leading to a blind SQL Injection vulnerability that can be exploited by subscriber+ users...

CVE-2023-0875

CVE-2023-0875 affects the WP Meta SEO WordPress plugin, prior to version 4.5.3. The issue is a blind SQL injection caused by improper sanitization/escaping of inputs in SQL queries, which can be exploited by users with subscriber+ privileges. Exploitation details and PoCs are documented in connec...

CVE-2023-0875 WP Meta SEO < 4.5.3 - Subscriber+ SQLi

The WP Meta SEO WordPress plugin before 4.5.3 does not properly sanitize and escape inputs into SQL queries, leading to a blind SQL Injection vulnerability that can be exploited by subscriber+ users...

CVE-2022-0875 miniOrange Google Authenticator < 1.0.5 - CSRF to Stored Cross-Site Scripting

The Google Authenticator WordPress plugin before 1.0.5 does not have CSRF check when saving its settings, and does not sanitise as well as escape them, allowing attackers to make a logged in admin change them and perform Cross-Site Scripting attacks...

CVE-2022-0875

The CVE-2022-0875 entry concerns the miniOrange Google Authenticator WordPress plugin before version 1.0.5. The vulnerability arises because the plugin does not perform CSRF checks when saving settings and fails to sanitise/escape input, enabling a logged-in administrator to modify settings and t...

SUSE: Security Advisory (SUSE-SU-2013:0669-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...