80 matches found
CVE-2026-1596
creationtimestamp| type| source ---|---|--- 2026-01-29 18:04:36+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdlesbotii2i...
CVE-2026-1596
A flaw has been found in D-Link DWR-M961 1.1.47. This vulnerability affects the function sub419920 of the file /boafrm/formLtefotaUpgradeQuectel. This manipulation of the argument fotaurl causes command injection. The attack is possible to be carried out remotely. The exploit has been published a...
CVE-2003-1596
NWFTPD.nlm before 5.03.12 in the FTP server in Novell NetWare does not properly restrict filesystem use by anonymous users with NFS Gateway home directories, which allows remote attackers to bypass intended access restrictions via an FTP session...
CVE-2025-1596
A vulnerability was found in SourceCodester Best Church Management Software 1.0 and classified as critical. This issue affects some unknown processing of the file /fpassword.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has...
EUVD-2006-1596
Malware in sbrugna...
CVE-2025-1596
creationtimestamp| type| source ---|---|--- 2025-02-23 23:22:35+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/5106 2025-02-24 02:04:27+00:00| seen| https://t.me/cvedetector/18766 2025-02-24 14:08:41+00:00| seen| Telegram/4opB1RUfytaJ0n2nFIXeaNrNQBfw13Y0nUsP58mkiTIO4DQ...
CVE-2025-1596
A vulnerability was found in SourceCodester Best Church Management Software 1.0 and classified as critical. This issue affects some unknown processing of the file /fpassword.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has...
CVE-2025-1596 SourceCodester Best Church Management Software fpassword.php sql injection
A vulnerability was found in SourceCodester Best Church Management Software 1.0 and classified as critical. This issue affects some unknown processing of the file /fpassword.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has...
CVE-2025-1596 SourceCodester Best Church Management Software fpassword.php sql injection
A vulnerability was found in SourceCodester Best Church Management Software 1.0 and classified as critical. This issue affects some unknown processing of the file /fpassword.php. The manipulation of the argument email leads to sql injection. The attack may be initiated remotely. The exploit has...
WordPress Ninja Forms File Uploads Extension Plugin <= 3.3.16 is vulnerable to Cross Site Scripting (XSS)
Software Ninja Forms File Uploads Extension Type Plugin Vulnerable versions = 3.3.16 Fixed in 3.3.18 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-1596 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 261b89d2f6fa Credi...
CVE-2024-1596
creationtimestamp| type| source ---|---|--- 2024-09-07 15:09:50+00:00| seen| https://t.me/cvedetector/5021 2024-09-07 16:30:38+00:00| seen| https://t.me/HackerArsenal/292...
CVE-2024-1596 Ninja Forms File Uploads <= 3.3.16 - Unauthenticated Stored Cross-Site Scripting via File Upload
The Ninja Forms - File Uploads plugin for WordPress is vulnerable to Stored Cross-Site Scripting via an uploaded file e.g. RTX file in all versions up to, and including, 3.3.16 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inje...
Huawei EulerOS: Security Advisory for linux-sgx (EulerOS-SA-2024-1596)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Cisco NX-OS Software Bash Shell Privilege Escalation (CVE-2019-1596)
A vulnerability in the Bash shell implementation for Cisco NX-OS Software could allow an authenticated, local attacker to escalate their privilege level to root. The attacker must authenticate with valid user credentials. The vulnerability is due to incorrect permissions of a system executable. A...
CVE-2023-1596
creationtimestamp| type| source ---|---|--- 2023-05-15 16:40:09+00:00| seen| https://t.me/cibsecurity/64114 2025-01-24 21:05:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/3025...
CVE-2023-1596
The CVE-2023-1596 entry concerns the TagDiv Composer WordPress plugin prior to version 4.0. The underlying issue is a failure to sanitize and escape a parameter before echoing it back in the page, resulting in a Reflected Cross-Site Scripting vulnerability. Impact is described as potentially enab...
WordPress tagDiv Composer Plugin < 4.0 is vulnerable to Cross Site Scripting (XSS)
Software tagDiv Composer Type Plugin Vulnerable versions 4.0 Fixed in 4.0 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2023-1596 Patch priority High CVSS severity High 7.1 Developer Claim ownership PSID 172e94e0ab28 Credits Truoc Phan Required privileg...
ABB REX640 Incorrect Permission Assignment for Critical Resource (CVE-2022-1596)
Incorrect Permission Assignment for Critical Resource vulnerability in ABB REX640 PCL1, REX640 PCL2, REX640 PCL3 allows an authenticated attacker to launch an attack against the user database file and try to take control of an affected system node. - Incorrect Permission Assignment for Critical...
CVE-2022-1596
Incorrect Permission Assignment for Critical Resource vulnerability in ABB REX640 PCL1, REX640 PCL2, REX640 PCL3 allows an authenticated attacker to launch an attack against the user database file and try to take control of an affected system node...
CVE-2022-1596
Incorrect Permission Assignment for Critical Resource vulnerability in ABB REX640 PCL1, REX640 PCL2, REX640 PCL3 allows an authenticated attacker to launch an attack against the user database file and try to take control of an affected system node...