SUSE: Security Advisory (SUSE-SU-2026:1011-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

ROOT-OS-DEBIAN-12-CVE-2025-1365 CVE-2025-1365 in rootio-elfutils - Patched by Root

Root has patched CVE-2025-1365 in the rootio-elfutils package for Root:Debian:12. Multiple fixed versions available...

Amazon Linux 2023 : composer (ALAS2023-2026-1365)

It is, therefore, affected by a vulnerability as referenced in the ALAS2023-2026-1365 advisory. Composer is a dependency manager for PHP. In versions on the 2.x branch prior to 2.2.26 and 2.9.3, attackers controlling remote sources that Composer downloads from might in some way inject ANSI contro...

Huawei EulerOS: Security Advisory for openjpeg2 (EulerOS-SA-2025-1365)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2025-1365 affecting package elfutils for versions less than 0.189-3

CVE-2025-1365 affecting package elfutils for versions less than 0.189-3. A patched version of the package is available...

SUSE CVE-2025-1365

A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the function processsymtab of the file readelf.c of the component eu-readelf. The manipulation of the argument D/a leads to buffer overflow. Local access is required to approach this attack. The explo...

CVE-2025-1365

A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the function processsymtab of the file readelf.c of the component eu-readelf. The manipulation of the argument D/a leads to buffer overflow. Local access is required to approach this attack. The explo...

CVE-2025-1365

A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the function processsymtab of the file readelf.c of the component eu-readelf. The manipulation of the argument D/a leads to buffer overflow. Local access is required to approach this attack. The explo...

CVE-2025-1365

creationtimestamp| type| source ---|---|--- 2025-02-16 23:36:25+00:00| seen| https://infosec.exchange/users/cve/statuses/114016189373186284 2025-02-17 00:16:03+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lidhqzeffz2h 2025-02-17 00:40:16+00:00| seen|...

CVE-2025-1365 GNU elfutils eu-readelf readelf.c process_symtab buffer overflow

A vulnerability, which was classified as critical, was found in GNU elfutils 0.192. This affects the function processsymtab of the file readelf.c of the component eu-readelf. The manipulation of the argument D/a leads to buffer overflow. Local access is required to approach this attack. The explo...

CVE-2025-1365

GNU elfutils 0.192 (eu-readelf) is affected; the vulnerability lives in readelf.c, function process_symtab, where manipulating the D/a argument causes a buffer overflow. Local access is required; exploitation has been disclosed. A patch is identified by git: 5e5c0394d82c53e97750fe7b18023e6f84157b...

CVE-2024-1365

The CVE-2024-1365 entry concerns the YML for Yandex Market (WordPress) plugin. It describes a Reflected Cross-Site Scripting (XSS) vulnerability via the feed_id parameter in all versions up to 4.2.3, allowing unauthenticated attackers to inject scripts into pages executed when a user clicks a lin...

RHEL 9 : nss (RHSA-2023:1365)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:1365 advisory. Network Security Services NSS is a set of libraries designed to support the cross-platform development of security-enabled client and server...

CVE-2023-1365 SourceCodester Online Pizza Ordering System ajax.php sql injection

A vulnerability was found in SourceCodester Online Pizza Ordering System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/ajax.php. The manipulation of the argument username leads to sql injection. The attack may be launched remotely. The...

CVE-2023-1365

CVE-2023-1365 describes a SQL injection in SourceCodester Online Pizza Ordering System 1.0, caused by manipulation of the username parameter in /admin/ajax.php. The vulnerability is exploitable remotely and has been publicly disclosed. Multiple sources report high severity (CVSS 3.1/3.0 ranges ar...

CVE-2018-1365

Summary: CVE-2018-1365 affects IBM Cloud Event Management and IBM Alert Notification when viewed in Internet Explorer. The vulnerability allows an attacker to hijack a victim’s click actions by loading the affected console in an iframe not belonging to the system, potentially enabling further att...

CVE-2022-1365

Exposure of Private Personal Information to an Unauthorized Actor in GitHub repository lquixada/cross-fetch prior to 3.1.5...

CVE-2022-1365

CVE-2022-1365 affects the GitHub JavaScript library cross-fetch in the lquixada/cross-fetch repo, prior to version 3.1.5. The issue is a Cookie header flaw that could allow a remote authenticated attacker to obtain private information. Impact is exposure of sensitive data; no exploit details or v...

SUSE: Security Advisory (SUSE-SU-2019:1365-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-1365

Cisco Unified Communications Manager IM & Presence Service web-based management interface contains SQL injection vulnerabilities caused by improper validation of user-submitted parameters. An authenticated, remote attacker can exploit these vulnerabilities by sending malicious requests to the app...