CVE-2026-1499

creationtimestamp| type| source ---|---|--- 2026-02-06 10:00:48+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3me6nik564q25...

EUVD-2026-1499

Ideagen DevonWay contains a stored cross site scripting vulnerability. A remote, authenticated attacker could craft a payload in the 'Reports' page that executes when another user views the report. Fixed in 2.62.4 and 2.62 LTS...

CVE-2025-1499

creationtimestamp| type| source ---|---|--- 2025-06-01 12:30:42+00:00| seen| https://bsky.app/profile/2rZiKKbOU3nTafniR2qMMSE0gwZ.activitypub.awakari.com.ap.brid.gy/post/3lqkbbod6qcz2 2025-06-01 16:45:35+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lqkpk76ndh2e...

openSUSE Security Advisory (SUSE-SU-2024:1499-2)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE: Security Advisory (SUSE-SU-2024:1499-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

RHEL 8 : thunderbird (RHSA-2024:1499)

The remote Redhat Enterprise Linux 8 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2024:1499 advisory. Mozilla Thunderbird is a standalone mail and newsgroup client. This update upgrades Thunderbird to version 115.9.0. Security Fixes: nss:...

CVE-2024-1499

The Orbit Fox by ThemeIsle plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Pricing Table widget in the $settings'titletags' parameter in all versions up to, and including, 2.10.30 due to insufficient input sanitization and output escaping. This makes it possible for...

CVE-2024-1499

CVE-2024-1499 affects Orbit Fox by ThemeIsle (WordPress plugin) up to version 2.10.30, with Stored XSS in the Pricing Table widget via the $settings['title_tags'] field caused by insufficient input sanitization and output escaping. Exploitation is possible by authenticated users with contributor ...

WordPress Orbit Fox by ThemeIsle Plugin <= 2.10.30 is vulnerable to Cross Site Scripting (XSS)

Software Orbit Fox by ThemeIsle Type Plugin Vulnerable versions = 2.10.30 Fixed in 2.10.31 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1499 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID a63057ae6403 Credits RandomRoot...

CVE-2023-1499

creationtimestamp| type| source ---|---|--- 2023-03-19 23:33:35+00:00| seen| https://t.me/cibsecurity/60292...

CVE-2023-1499

A vulnerability classified as critical was found in code-projects Simple Art Gallery 1.0. Affected by this vulnerability is an unknown functionality of the file adminHome.php. The manipulation of the argument reachcity leads to sql injection. The attack can be launched remotely. The exploit has...

CVE-2023-1499

The CVE-2023-1499 issue affects code-projects Simple Art Gallery 1.0, where the adminHome.php function handling the reach_city parameter is vulnerable to SQL injection. The vulnerability is triggered remotely and exploitation has been disclosed publicly. Connected sources consistently cite a SQL ...

CVE-2023-1499 code-projects Simple Art Gallery adminHome.php sql injection

A vulnerability classified as critical was found in code-projects Simple Art Gallery 1.0. Affected by this vulnerability is an unknown functionality of the file adminHome.php. The manipulation of the argument reachcity leads to sql injection. The attack can be launched remotely. The exploit has...

Huawei EulerOS: Security Advisory for dnsmasq (EulerOS-SA-2023-1499)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE CVE-2014-1499

Mozilla Firefox before 28.0 and SeaMonkey before 2.25 allow remote attackers to spoof the domain name in the WebRTC 1 camera or 2 microphone permission prompt by triggering navigation at a certain time during generation of this prompt...

CVE-2022-1499

creationtimestamp| type| source ---|---|--- 2022-07-27 02:35:26+00:00| seen| https://t.me/cibsecurity/47018...

CVE-2022-1499

Inappropriate implementation in WebAuthentication in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to bypass same origin policy via a crafted HTML page...

CVE-2022-1499

Inappropriate implementation in WebAuthentication in Google Chrome prior to 101.0.4951.41 allowed a remote attacker to bypass same origin policy via a crafted HTML page...

CVE-2022-1499

CVE-2022-1499 – Chrome/Chromium WebAuthentication bypass Affected software: Google Chrome (Chromium derivatives) on desktop platforms; affected component: WebAuthentication implementation.Root cause: Inappropriate implementation in WebAuthentication allowed a remote attacker to bypass the same-or...

Mageia: Security Advisory (MGASA-2022-0158)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...