CVE-2026-1535

creationtimestamp| type| source ---|---|--- 2026-01-28 23:25:21+00:00| seen| Telegram/z85SqtqVUCudIktcZHqumWuxIH1RhT7nS5x3oYNbe3OIY...

CVE-2026-1535

A security vulnerability has been detected in code-projects Online Music Site 1.0. This impacts an unknown function of the file /Administrator/PHP/AdminReply.php. Such manipulation of the argument ID leads to sql injection. It is possible to launch the attack remotely. The exploit has been...

EUVD-2026-1535

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in AmentoTech Workreap theme's plugin workreap allows SQL Injection.This issue affects Workreap theme's plugin: from n/a through = 3.3.6...

CVE-2023-1535

creationtimestamp| type| source ---|---|--- 2025-02-25 21:27:50+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5389...

CVE-2025-1535

creationtimestamp| type| source ---|---|--- 2025-02-21 12:18:24+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/4882 2025-02-21 14:30:21+00:00| published-proof-of-concept| Telegram/smeg7XbhwMZmcpjqPqoTUlPhzXVHzlN-AIRGGsTkg3F40mk 2025-02-21 15:35:50+00:00| seen|...

openSUSE: Security Advisory for flatpak (SUSE-SU-2024:1535-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2024-1535

ProfilePress WordPress plugin (formerly named ProfilePress/Restrict Content) is affected by CVE-2024-1535. According to the sources, versions up to 4.15.2 are vulnerable to stored cross-site scripting via the plugin’s shortcodes due to insufficient input sanitization and output escaping on user-s...

WordPress ProfilePress Plugin <= 4.15.2 is vulnerable to Cross Site Scripting (XSS)

Software ProfilePress Type Plugin Vulnerable versions = 4.15.2 Fixed in 4.15.3 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1535 Patch priority Low CVSS severity Low 6.5 Developer Claim ownership PSID 06caa12c0913 Credits Arkadiusz Hydzik Required...

CVE-2023-1535

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.7...

CVE-2023-1535 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.7...

CVE-2023-1535

CVE-2023-1535 affects the GitHub project answerdev/answer with a Stored XSS vulnerability in versions prior to 1.0.7. The issue is caused by XSS in the application’s code path handling user input. Impact details across sources indicate cross-site execution risks for affected users. Remediation ad...

CVE-2023-1535 Cross-site Scripting (XSS) - Stored in answerdev/answer

Cross-site Scripting XSS - Stored in GitHub repository answerdev/answer prior to 1.0.7...

RHEL 8 : kpatch-patch (RHSA-2022:1535)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2022:1535 advisory. This is a kernel live patch module which is automatically loaded by the RPM post-install script to modify the code of a running kernel...

Amazon Linux AMI : tomcat8 (ALAS-2021-1535)

The version of tomcat8 installed on the remote host is prior to 8.5.69-1.88. It is, therefore, affected by a vulnerability as referenced in the ALAS-2021-1535 advisory. Apache Tomcat 10.0.0-M1 to 10.0.6, 9.0.0.M1 to 9.0.46 and 8.5.0 to 8.5.66 did not correctly parse the HTTP transfer-encoding...

SUSE: Security Advisory (SUSE-SU-2019:1535-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2021-1535

CVE-2021-1535 describes an information-disclosure vulnerability in Cisco SD-WAN vManage in cluster mode, caused by the absence of authentication for sensitive information in the cluster management interface. An unauthenticated, remote attacker could exploit a crafted request to view sensitive inf...

Amazon Linux 2 : libxslt (ALAS-2020-1535)

The version of libxslt installed on the remote host is prior to 1.1.28-6. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2020-1535 advisory. libxslt through 1.1.33 allows bypass of a protection mechanism because callers of xsltCheckRead and xsltCheckWrite permit...

CVE-2019-1535

CVE-2019-1535 entry is rejected/not used and does not represent an active vulnerability.

CVE-2020-1535

An elevation of privilege vulnerability exists when the Windows Backup Engine improperly handles memory. To exploit this vulnerability, an attacker would first have to gain execution on the victim system. An attacker could then run a specially crafted application to elevate privileges. The securi...

CVE-2020-1535

CVE-2020-1535 is an Elevation of Privilege vulnerability in the Windows Backup Engine caused by improper handling of memory. An attacker would need to first gain code execution locally and then run a crafted application to elevate privileges. Microsoft’s security update addresses the issue by cor...