CVE-2026-1564

creationtimestamp| type| source ---|---|--- 2026-04-15 22:08:06+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mjkvtn2oj62t...

EUVD-2026-1564

Asseco ADMX system is used for processing medical records. It allows logged in users to access medical files belonging to other users through manipulation of GET arguments containing document IDs. This issue has been fixed in 6.09.01.62 version of ADMX...

Mozilla Firefox < 32.0

The version of Firefox installed on the remote Windows host is prior to 32.0. It is, therefore, affected by a vulnerability as referenced in the mfsa2014-69 advisory. - Apparent info leak caused by uninitialized memory with malformed GIFsCVE-2014-1564 CVE-2014-1564 Note that Nessus has not tested...

Mozilla Firefox < 32.0

The version of Firefox installed on the remote macOS or Mac OS X host is prior to 32.0. It is, therefore, affected by a vulnerability as referenced in the mfsa2014-69 advisory. - Apparent info leak caused by uninitialized memory with malformed GIFsCVE-2014-1564 CVE-2014-1564 Note that Nessus has...

Mozilla Firefox ESR < 31.1

The version of Firefox ESR installed on the remote macOS or Mac OS X host is prior to 31.1. It is, therefore, affected by a vulnerability as referenced in the mfsa2014-69 advisory. - Apparent info leak caused by uninitialized memory with malformed GIFsCVE-2014-1564 CVE-2014-1564 Note that Nessus...

EUVD-2015-9381

Malware in sbrugna...

EUVD-2021-1404

Malware in sbrugna...

EUVD-2020-7300

Malware in sbrugna...

EUVD-2018-8154

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2015-1564

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Cross-site scripting XSS vulnerability in style-underground/search in Plain Black WebGUI 7.10.29 and earlier allows remote attackers to inject arbitrary web...

CVE-2023-1564

A vulnerability was found in SourceCodester Air Cargo Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file admin/transactions/updatestatus.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql...

CVE-2015-1564

Cross-site scripting XSS vulnerability in style-underground/search in Plain Black WebGUI 7.10.29 and earlier allows remote attackers to inject arbitrary web script or HTML via the Search field...

CVE-2025-1564

creationtimestamp| type| source ---|---|--- 2025-03-01 08:27:09+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6062 2025-03-01 09:00:53+00:00| seen| Telegram/nu5zP1RQJMxhaQWBhFSOb3vErKKnFyrM4knJnup4yvdMGEw 2025-03-01 09:48:06+00:00| seen|...

CVE-2025-1564

The CVE-2025-1564 entry concerns SetSail Membership (WordPress)

CVE-2024-1564 Schema Pro < 2.7.16 - Contributor+ Custom Field Access

The wp-schema-pro WordPress plugin before 2.7.16 does not validate post access allowing a contributor user to access custom fields on any post regardless of post type or status via a shortcode...

CVE-2024-1564 Schema Pro < 2.7.16 - Contributor+ Custom Field Access

The wp-schema-pro WordPress plugin before 2.7.16 does not validate post access allowing a contributor user to access custom fields on any post regardless of post type or status via a shortcode...

WordPress Schema Pro Plugin < 2.7.16 is vulnerable to Broken Access Control

Software Schema Pro Type Plugin Vulnerable versions 2.7.16 Fixed in 2.7.16 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-1564 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 68dac5194d9b Credits Scott Kingsley Clark Required...

GLSA-202305-28 : snakeyaml: Multiple Vulnerabilities

The remote host is affected by the vulnerability described in GLSA-202305-28 snakeyaml: Multiple Vulnerabilities - The Alias feature in SnakeYAML before 1.26 allows entity expansion during a load operation, a related issue to CVE-2003-1564. CVE-2017-18640 - Using snakeYAML to parse untrusted YAML...

CVE-2023-1564

creationtimestamp| type| source ---|---|--- 2023-03-22 15:35:55+00:00| seen| https://t.me/cibsecurity/60444...

CVE-2023-1564 SourceCodester Air Cargo Management System GET Parameter update_status.php sql injection

A vulnerability was found in SourceCodester Air Cargo Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file admin/transactions/updatestatus.php of the component GET Parameter Handler. The manipulation of the argument id leads to sql...