72 matches found
Exploit for CVE-2026-2144
No d...
CVE-2026-2144
creationtimestamp| type| source ---|---|--- 2026-02-14 07:01:02+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mesh6h2yom23...
CVE-2021-2144
creationtimestamp| type| source ---|---|--- 2026-01-27 11:00:00+00:00| seen| https://www.cisa.gov/news-events/ics-advisories/icsa-26-027-02...
EUVD-2026-2144
Out-of-bounds read in Microsoft Office Word allows an unauthorized attacker to execute code locally...
CVE-2023-2144
A vulnerability was found in Campcodes Online Thesis Archiving System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/departments/viewdepartment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...
CVE-2019-2144
In libxaac, there is a possible out of bounds read due to a missing bounds check. This could lead to information disclosure with no additional execution privileges needed. User interaction is needed for exploitation. Product: AndroidVersions: Android-10Android ID: A-112856493...
CVE-2009-2144
SQL injection vulnerability in the FireStats plugin before 1.6.2-stable for WordPress allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
Linux Distros Unpatched Vulnerability : CVE-2013-2144
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Red Hat Enterprise Virtualization Manager RHEVM before 3.2 does not properly check permissions for the target storage domain, which allows attackers to cause a...
CentOS 7 : docker (RHSA-2021:2144)
The remote CentOS Linux 7 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2021:2144 advisory. - runc before 1.0.0-rc95 allows a Container Filesystem Breakout via Directory Traversal. To exploit the vulnerability, an attacker must be able to create multip...
EulerOS Virtualization 2.10.1 : nghttp2 (EulerOS-SA-2024-2144)
According to the versions of the nghttp2 package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : nghttp2 is an implementation of the Hypertext Transfer Protocol version 2 in C. The nghttp2 library prior to version 1.61.0 keeps...
CVE-2024-2144 Ultimate Addons for Beaver Builder – Lite <= 1.5.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via Image Separator Widget
The Ultimate Addons for Beaver Builder – Lite plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the Image Separator widget in all versions up to, and including, 1.5.7 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers...
Amazon Linux 2 : libzapojit (ALAS-2023-2144)
The version of libzapojit installed on the remote host is prior to 0.0.3-4. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2023-2144 advisory. In GNOME libzapojit through 0.0.3, zpj-skydrive.c does not enable TLS certificate verification on the SoupSessionSync objects it...
CVE-2023-2144
creationtimestamp| type| source ---|---|--- 2023-04-18 14:29:03+00:00| seen| https://t.me/cibsecurity/62341...
CVE-2023-2144
A vulnerability was found in Campcodes Online Thesis Archiving System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/departments/viewdepartment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...
CVE-2023-2144 Campcodes Online Thesis Archiving System view_department.php sql injection
A vulnerability was found in Campcodes Online Thesis Archiving System 1.0 and classified as critical. This issue affects some unknown processing of the file /admin/departments/viewdepartment.php. The manipulation of the argument id leads to sql injection. The attack may be initiated remotely. The...
CVE-2023-2144
Campcodes Online Thesis Archiving System 1.0 is affected by a SQL injection in /admin/departments/view_department.php via the id parameter. Descriptions consistently indicate remote exploitation and public disclosure of the exploit. There is no explicit patch version or fixed code path in the pro...
RHEL 7 : rh-mariadb103-mariadb and rh-mariadb103-galera (RHSA-2020:5246)
The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2020:5246 advisory. MariaDB is a multi-user, multi-threaded SQL database server. For all practical purposes, MariaDB is binary-compatible with MySQL. The...
CVE-2022-2144
creationtimestamp| type| source ---|---|--- 2022-07-17 14:27:53+00:00| seen| https://t.me/cibsecurity/46396...
CVE-2022-2144
The CVE concerns the WordPress plugin “Jquery Validation For Contact Form 7” (versions
CVE-2022-2144 Jquery Validation For Contact Form 7 < 5.3 - Arbitrary Options Update via CSRF
The Jquery Validation For Contact Form 7 WordPress plugin before 5.3 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change Blog options like defaultrole, userscanregister via a CSRF attack...