RockyLinux 8 : python3.11 (RLSA-2026:1374)

The remote RockyLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:1374 advisory. cpython: Excessive read buffering DoS in http.client CVE-2025-13836 cpython: python: cpython: Quadratic algorithm in xml.dom.minidom leads to denial of...

EUVD-2019-1374

Malware in sbrugna...

CVE-2019-1374

An information disclosure vulnerability exists in the way Windows Error Reporting WER handles objects in memory, aka 'Windows Error Reporting Information Disclosure Vulnerability'...

CVE-2010-1374

Directory traversal vulnerability in iChat in Apple Mac OS X 10.5.8, and 10.6 before 10.6.4, when AIM is used, allows remote attackers to create arbitrary files via directory traversal sequences in an inline image-transfer operation...

CVE-2025-1374 code-projects Real Estate Property Management System search.php sql injection

A vulnerability classified as critical has been found in code-projects Real Estate Property Management System 1.0. This affects an unknown part of the file /search.php. The manipulation of the argument StateName/CityName/AreaName/CatId leads to sql injection. It is possible to initiate the attack...

CVE-2025-1374

CVE-2025-1374 affects code-projects Real Estate Property Management System 1.0. The vulnerability is in /search.php where manipulating parameters StateName, CityName, AreaName, or CatId allows SQL injection. It can be exploited remotely and the exploit has been disclosed publicly. Remediation/mit...

CVE-2025-1374 code-projects Real Estate Property Management System search.php sql injection

A vulnerability classified as critical has been found in code-projects Real Estate Property Management System 1.0. This affects an unknown part of the file /search.php. The manipulation of the argument StateName/CityName/AreaName/CatId leads to sql injection. It is possible to initiate the attack...

CVE-2022-1374

Delta Electronics DIAEnergie All versions prior to 1.8.02.004 has a blind SQL injection vulnerability exists in DIAEunHandler.ashx. This allows an attacker to inject arbitrary SQL queries, retrieve and modify database contents, and execute system commands...

CVE-2024-1374

creationtimestamp| type| source ---|---|--- 2024-02-13 20:22:17+00:00| seen| https://t.me/ctinow/184142 2024-03-05 02:32:07+00:00| seen| https://t.me/ctinow/199834 2025-05-09 18:26:17+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/15806...

CVE-2024-1374 Command injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an attacker with an editor role in the Management Console to gain admin SSH access to the appliance via nomad templates when configuring audit log forwarding. Exploitation of this vulnerability required acce...

CVE-2024-1374

CVE-2024-1374 : In GitHub Enterprise Server, a command-injection in the Management Console via nomad templates allowed an attacker with an editor role to escalate to admin SSH access to the appliance (root) when configuring audit log forwarding. Exploitation requires access to the GitHub Enterpri...

CVE-2024-1374 Command injection vulnerability was identified in GitHub Enterprise Server that allowed privilege escalation in the Mangement Console

A command injection vulnerability was identified in GitHub Enterprise Server that allowed an attacker with an editor role in the Management Console to gain admin SSH access to the appliance via nomad templates when configuring audit log forwarding. Exploitation of this vulnerability required acce...

CVE-2019-1374

creationtimestamp| type| source ---|---|--- 2024-02-11 14:36:36+00:00| seen| https://t.me/ctinow/182796...

CVE-2023-1374

creationtimestamp| type| source ---|---|--- 2023-03-13 15:53:21+00:00| seen| https://t.me/cibsecurity/59887...

CVE-2023-1374

CVE-2023-1374 affects Solidres – Hotel booking plugin for WordPress. It is a stored XSS via the currency_name parameter in versions up to 0.9.4 caused by insufficient input sanitization and output escaping. Exploitation requires authenticated admin privileges; injected scripts execute when users ...

WordPress Solidres – Hotel booking plugin Plugin <= 0.9.4 is vulnerable to Cross Site Scripting (XSS)

Software Solidres – Hotel booking plugin Type Plugin Vulnerable versions = 0.9.4 Fixed in N/A OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1374 Patch priority Low CVSS severity Low 5.9 Developer Claim ownership PSID 2295c3bbe77d Credits Daniel...

Security Bulletin: IBM WebSphere MQ Clients connecting to a Queue Manager could cause a SIGSEGV in the Channel process amqrmppa. (CVE-2018-1374)

Summary A client connecting to a IBM MQ or IBM WebSphere MQ Queue Manager could cause a SIGSEGV in the channel process amqrmppa. Vulnerability Details CVEID: CVE-2018-1374 DESCRIPTION: A IBM WebSphere MQ Client connecting to a Queue Manager could cause a SIGSEGV in the Channel process amqrmppa...

CVE-2022-1374

creationtimestamp| type| source ---|---|--- 2022-05-02 22:28:14+00:00| seen| https://t.me/cibsecurity/41760...

CVE-2022-1374

Delta Electronics DIAEnergie is affected by a blind SQL injection in GetDemandAnalysisData and various handlers (e.g., DIAE_unHandler.ashx) across all versions prior to 1.8.02.004. The vulnerability allows an attacker to inject arbitrary SQL, retrieve/modify database contents, and execute system ...

CVE-2020-1374

creationtimestamp| type| source ---|---|--- 2021-08-12 05:09:51+00:00| seen| Telegram/ubkV9PLRwrywo4REyzAYJ2ZF4euM1xsCFWwIIuV0f6OI4y-W...