CVE-2026-1784

creationtimestamp| type| source ---|---|--- 2026-06-02 09:58:17+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mncdgtintd2j 2026-06-04 10:00:25+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mnheii7v7r2n...

MiracleLinux 8 : bash-4.4.19-14.el8 (AXSA:2021-1784:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2021-1784:01 advisory. bash: when effective UID is not equal to its real UID the saved UID is not dropped CVE-2019-18276 Tenable has extracted the preceding description block...

CVE-2005-1784

Hosting Controller 6.1 HotFix 2.0 and earlier allows remote attackers to steal passwords and gain privileges via a modified emailaddress parameter in an updateprofile action for UserProfile.asp...

EUVD-2026-1784

The Tutor LMS – eLearning and online course solution plugin for WordPress is vulnerable to unauthorized course completion in all versions up to, and including, 3.9.2. This is due to missing enrollment verification in the 'markcoursecomplete' function. This makes it possible for authenticated...

Linux Distros Unpatched Vulnerability : CVE-2016-1784

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The History implementation in WebKit in Apple iOS before 9.3, Safari before 9.1, and tvOS before 9.2 allows remote attackers to cause a denial of service resour...

CVE-2024-1784

A vulnerability classified as problematic was found in Limbas 5.2.14. Affected by this vulnerability is an unknown functionality of the file mainadmin.php. The manipulation of the argument tabgroup leads to sql injection. The complexity of an attack is rather high. The exploitation appears to be...

CVE-2023-1784

A vulnerability was found in jeecg-boot 3.5.0 and classified as critical. This issue affects some unknown processing of the component API Documentation. The manipulation leads to improper authentication. The attack may be initiated remotely. The exploit has been disclosed to the public and may be...

CVE-2021-1784

A permissions issue existed in DiskArbitration. This was addressed with additional ownership checks. This issue is fixed in macOS Big Sur 11.3, Security Update 2021-002 Catalina, Security Update 2021-003 Mojave. A malicious application may be able to modify protected parts of the file system...

CVE-2025-1784

creationtimestamp| type| source ---|---|--- 2025-03-26 06:25:19+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/8810 2025-03-26 09:42:23+00:00| seen| https://t.me/cvedetector/21153...

CVE-2025-1784

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the uagb block in all versions up to, and including, 2.19.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2025-1784 Spectra – WordPress Gutenberg Blocks <= 2.19.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the uagb block in all versions up to, and including, 2.19.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

CVE-2025-1784 Spectra – WordPress Gutenberg Blocks <= 2.19.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

The Spectra – WordPress Gutenberg Blocks plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the uagb block in all versions up to, and including, 2.19.0 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with...

Oracle Linux 8 : gnutls (ELSA-2024-1784)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2024-1784 advisory. 3.6.16-8.3fips - Allow RSA keygen with modulus sizes bigger than 3072 bits and validate the seed length as defined in FIPS 186-4 section B.3.2 Orabug: 33200526 ...

CVE-2024-1784

creationtimestamp| type| source ---|---|--- 2024-02-23 02:26:18+00:00| seen| https://t.me/ctinow/191372 2024-02-23 02:26:26+00:00| seen| https://t.me/ctinow/191377 2024-03-13 15:41:41+00:00| seen| https://t.me/ctinow/206811...

CVE-2024-1784

CVE-2024-1784 affects Limbas 5.2.14, where manipulating the tab_group parameter in main_admin.php enables SQL injection. The vulnerability is described with high potential impact to confidentiality, integrity, and availability, and the attack complexity is high with network access required. Explo...

Cisco NX-OS Software Command Injection Vulnerability (CVE-2019-1784)

A vulnerability in the CLI of Cisco NX-OS Software could allow an authenticated, local attacker to execute arbitrary commands on the underlying Linux operating system with the privilege level of root. The vulnerability is due to insufficient validation of arguments passed to a specific CLI comman...

Amazon Linux AMI : golang (ALAS-2023-1784)

The version of golang installed on the remote host is prior to 1.18.6-1.45. It is, therefore, affected by a vulnerability as referenced in the ALAS-2023-1784 advisory. The go command may generate unexpected code at build time when using cgo. This may result in unexpected behavior when running a g...

CVE-2023-1784

creationtimestamp| type| source ---|---|--- 2023-04-01 00:22:29+00:00| seen| Telegram/BYjXDYbRy5yn68LDVT0yk9yxNHJe2EB1h-napTUBURTg0k...

CVE-2023-1784 jeecg-boot API Documentation improper authentication

A vulnerability was found in jeecg-boot 3.5.0 and classified as critical. This issue affects some unknown processing of the component API Documentation. The manipulation leads to improper authentication. The attack may be initiated remotely. The exploit has been disclosed to the public and may be...

CVE-2023-1784 jeecg-boot API Documentation improper authentication

A vulnerability was found in jeecg-boot 3.5.0 and classified as critical. This issue affects some unknown processing of the component API Documentation. The manipulation leads to improper authentication. The attack may be initiated remotely. The exploit has been disclosed to the public and may be...