15 matches found
CVE-2026-12195
creationtimestamp| type| source ---|---|--- 2026-07-04 17:16:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mptkuk3x7l2h 2026-07-05 03:20:13+00:00| seen| https://bsky.app/profile/kriptabiz.bsky.social/post/3mpumlgvzdx2f 2026-07-05 11:39:40+00:00| seen|...
RHCOS 3 : Red Hat OpenShift Container Platform 3.7 (RHSA-2017:3188)
The remote Red Hat Enterprise Linux CoreOS 3 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3188 advisory. - 3: authentication bypass for elasticsearch with external routes CVE-2017-12195 Note that Nessus has not tested for this issue but has inste...
CVE-2019-12195
TP-Link TL-WR840N v5 00000005 devices allow XSS via the network name. The attacker must log into the router by breaking the password and going to the admin login page by THC-HYDRA to get the network name. With an XSS payload, the network name changed automatically and the internet connection was...
CVE-2025-12195
creationtimestamp| type| source ---|---|--- 2025-12-04 22:08:05+00:00| seen| https://infosec.exchange/users/cR0w/statuses/115663574444372667 2025-12-04 22:38:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3m76zyo5xyo2u...
CVE-2024-12195
creationtimestamp| type| source ---|---|--- 2025-01-04 11:27:43+00:00| seen| https://infosec.exchange/users/cve/statuses/113769844738584802 2025-01-04 12:15:37+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lew3h6qn5v22 2025-01-04 12:42:26+00:00| seen|...
CVE-2024-12195 WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts <= 2.6.16 - Authenticated (Subscriber+) SQL Injection
The WP Project Manager – Task, team, and project management plugin featuring kanban board and gantt charts plugin for WordPress is vulnerable to SQL Injection via the 'projectid' parameter of the /wp-json/pm/v2/projects/2/task-lists REST API endpoint in all versions up to, and including, 2.6.16 d...
Oracle Linux 8 : virt:kvm_utils2 (ELSA-2023-12195)
The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-12195 advisory. - hw/pvrdma: Protect against buggy or malicious guest driver Yuval Shaia Orabug: 35064352 CVE-2022-1050 - hw/display/qxl: Avoid buffer overrun in...
CVE-2019-12195
creationtimestamp| type| source ---|---|--- 2019-05-24 16:48:23+00:00| seen| https://t.me/cvemitreorg/290...
CVE-2019-12195
CVE-2019-12195 affects TP-Link TL-WR840N v5 00000005. The vulnerability is a cross‑site scripting flaw in the device’s web interface that can be triggered via the network name. Exploitation requires the attacker to log in by breaking the password (e.g., via THC-HYDRA) and access the admin login p...
TP-LINK TL-WR840N Cross Site Scripting
Exploit Title: TL-WR840N v5 00000005 Date: 5/10/2019 Exploit Author: purnendu ghosh Vendor Homepage: https://www.tp-link.com/ Software Link: https://www.amazon.in/TP-LINK-TL-WR840N-300Mbps-Wireless-External/dp/B01A0G1J7Q Category: Hardware Firmware Version:0.9.1 3.16 v0001.0 Build 171211 Rel.5880...
RHEL 7 : Red Hat OpenShift Enterprise (RHSA-2017:3389)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2017:3389 advisory. OpenShift Enterprise by Red Hat is the company's cloud computing Platform-as-a-Service PaaS solution designed for on-premise or private cloud...
CVE-2017-12195
The CVE-2017-12195 vulnerability affects OpenShift platforms (OpenShift Container Platform/Enterprise) using the openshift elasticsearch plugin. Affected: OpenShift Enterprise/Container Platform 3.x with Elasticsearch; root cause is an authentication bypass where an attacker who knows the authent...
CVE-2017-12195
A flaw was found in all Openshift Enterprise versions using the openshift elasticsearch plugin. An attacker with knowledge of the given name used to authenticate and access Elasticsearch can later access it without the token, bypassing authentication. This attack also requires that the...
CVE-2018-12195
...
CVE-2018-12195
CVE-2018-12195 is rejected/not used; this CVE ID does not represent an active vulnerability entry.