SUSE SLED15 / SLES15 Security Update : runc (SUSE-SU-2026:1487-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2026:1487-1 advisory. This update for runc rebuilds it against the current go 1.25 security release. Tenable has extracted the preceding...

CVE-2026-1487

creationtimestamp| type| source ---|---|--- 2026-03-03 04:25:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mg4wfv7qk72o...

MiracleLinux 4 : perl-5.10.1-119.AXS4 (AXSA:2011-570:01)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2011-570:01 advisory. Perl is a high-level programming language with roots in C, sed, awk and shell scripting. Perl is good at handling processes and files, and is...

EUVD-2026-1487

Missing Authorization vulnerability in Munir Kamal Block Slider allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Block Slider: from n/a through 2.2.3...

CVE-2019-1487

An information disclosure vulnerability in Android Apps using Microsoft Authentication Library MSAL 0.3.1-Alpha or later exists under specific conditions, aka 'Microsoft Authentication Library for Android Information Disclosure Vulnerability'...

CVE-2016-1487

Lexmark Markvision Enterprise before 2.3.0 misuses the Apache Commons Collections Library, leading to remote code execution because of Java deserialization...

CVE-2025-1487

creationtimestamp| type| source ---|---|--- 2025-03-13 08:55:38+00:00| seen| https://t.me/cvedetector/20191...

CVE-2025-1487

The WoWPth WordPress plugin through 2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2025-1487 WoWPth <= 2.0 - Reflected XSS

The WoWPth WordPress plugin through 2.0 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting which could be used against high privilege users such as admin...

CVE-2025-1487

The CVE CVE-2025-1487 describes a Reflected XSS in the WoWPth WordPress plugin (versions up to 2.0). The underlying issue is that a parameter is not sanitized/escaped before being echoed on the page, enabling an attacker to leverage Reflected XSS against high-privilege users (e.g., admins). Publi...

CentOS 6 : chromium-browser (RHSA-2020:1487)

The remote CentOS Linux 6 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:1487 advisory. - Out of bounds write in V8 in Google Chrome prior to 81.0.4044.92 allowed a remote attacker to potentially exploit heap corruption via a crafted HTML...

WordPress Contest Gallery Plugin < 21.3.1 is vulnerable to Cross Site Scripting (XSS)

Software Contest Gallery Type Plugin Vulnerable versions 21.3.1 Fixed in 21.3.1 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1487 Patch priority Low CVSS severity Low 6.5 Developer Wasiliy Strecker PSID 898230946609 Credits Giulio - Mistborn...

CVE-2024-1487

The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks...

CVE-2024-1487 Photos and Files Contest Gallery < 21.3.1 - Author+ Stored Cross Site Scripting

The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks...

CVE-2024-1487 Photos and Files Contest Gallery < 21.3.1 - Author+ Stored Cross Site Scripting

The Photos and Files Contest Gallery WordPress plugin before 21.3.1 does not sanitize and escape some parameters, which could allow users with a role as low as author to perform Cross-Site Scripting attacks...

CVE-2024-1487

The CVE affects the Photos and Files Contest Gallery WordPress plugin prior to 21.3.1. The issue is improper sanitization/escaping of certain parameters, enabling stored Cross-Site Scripting by users with as low as author privileges. Impact is potential script execution in pages leveraged by the ...

CentOS 7 : java-1.8.0-openjdk (RHSA-2022:1487)

The remote CentOS Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1487 advisory. - Vulnerability in the Oracle Java SE, Oracle GraalVM Enterprise Edition product of Oracle Java SE component: JAXP. Supported versions that are affecte...

CVE-2023-1487

creationtimestamp| type| source ---|---|--- 2023-03-19 14:49:25+00:00| seen| https://t.me/cibsecurity/60283...

CVE-2023-1487

CVE-2023-1487 concerns Lespeed WiseCleaner Wise System Monitor 1.5.3.54, in which the library file WiseHDInfo64.dll within the IoControlCode Handler contains a vulnerable set of processing paths (0x9C40208C/0x9C402000/0x9C402084/0x9C402088/0x9C402004/0x9C4060C4/0x9C4060CC/0x9C4060D0/0x9C4060D4/0x...

K83058481: Perl vulnerabilities CVE-2011-1487, CVE-2011-2939, and CVE-2011-3597

Security Advisory Description CVE-2011-1487 The 1 lc, 2 lcfirst, 3 uc, and 4 ucfirst functions in Perl 5.10.x, 5.11.x, and 5.12.x through 5.12.3, and 5.13.x through 5.13.11, do not apply the taint attribute to the return value upon processing tainted input, which might allow context-dependent...