CVE-2026-2519

creationtimestamp| type| source ---|---|--- 2026-04-29 05:32:04+00:00| seen| https://bsky.app/profile/atomicedge.bsky.social/post/3mkmepjgstg2c...

CVE-2026-2519 Online Scheduling and Appointment Booking System – Bookly <= 27.0 - Unauthenticated Price Manipulation via 'tips'

The Online Scheduling and Appointment Booking System – Bookly plugin for WordPress is vulnerable to price manipulation via the 'tips' parameter in all versions up to, and including, 27.0. This is due to the plugin trusting a user-supplied input without server-side validation against the configure...

Linux Distros Unpatched Vulnerability : CVE-2011-2519

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Xen in the Linux kernel, when running a guest on a host without hardware assisted paging HAP, allows guest users to cause a denial of service invalid pointer...

EUVD-2026-2519

Improper Validation of Array Index CWE-129 in Packetbeat’s MongoDB protocol parser can allow an attacker to cause Overflow Buffers CAPEC-100 through specially crafted network traffic. This requires an attacker to send a malformed payload to a monitored network interface where MongoDB protocol...

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2025-2519)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

EUVD-2023-2519

Malicious code in bioql PyPI...

CVE-2005-2519

slpd in Directory Services in Mac OS X 10.3.9 creates insecure temporary files as root, which allows local users to gain privileges...

Alibaba Cloud Linux 3 : 0057: libtiff (ALINUX3-SA-2024:0057)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0057 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2022-2056: Divide By Zero error in...

CVE-2025-2519

creationtimestamp| type| source ---|---|--- 2025-04-08 02:45:43+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/10821 2025-04-08 05:37:38+00:00| seen| https://t.me/cvedetector/22382...

WordPress Streamit Theme <= 4.0.1 is vulnerable to Arbitrary File Download

Software Streamit Type Theme Vulnerable versions = 4.0.1 Fixed in 4.0.2 OWASP Top 10 A3: Injection Classification Arbitrary File Download CVE CVE-2025-2519 Patch priority High CVSS severity High 6.5 Developer Claim ownership PSID 446a13c89b70 Credits István Márton Required privilege Subscriber...

Linux Distros Unpatched Vulnerability : CVE-2022-2519

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - There is a double free or corruption in rotateImage at tiffcrop.c:8839 found in libtiff 4.4.0rc1 CVE-2022-2519 Note that Nessus relies on the presence of the...

RHEL 7 : rh-php71-php (RHSA-2019:2519)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2019:2519 advisory. PHP is an HTML-embedded scripting language commonly used with the Apache HTTP Server. The following packages have been upgraded to a later...

Amazon Linux 2 : glib2 (ALAS-2024-2519)

The version of glib2 installed on the remote host is prior to 2.56.1-9. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2024-2519 advisory. GNOME GLib before 2.65.3 has an integer overflow, that might lead to an out-of-bounds write, in goptiongroupaddentries. NOTE: the...

CVE-2024-2519

CVE-2024-2519 affects MAGESH-K21 Online-College-Event-Hall-Reservation-System v1.0. The vulnerability is a reflected XSS in navbar.php via the id parameter, exploitable remotely. Public exploit/disclosure exists. Red Hat and other sources corroborate the issue; no vendor response noted. PT-Securi...

CVE-2024-2519

creationtimestamp| type| source ---|---|--- 2024-03-15 21:01:25+00:00| seen| https://t.me/ctinow/209127 2024-03-16 16:21:57+00:00| seen| https://t.me/ctinow/209604 2024-03-16 16:26:36+00:00| seen| https://t.me/ctinow/209605 2025-02-14 17:11:13+00:00| published-proof-of-concept|...

CentOS 9 : libtiff-4.4.0-5.el9

The remote CentOS Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the libtiff-4.4.0-5.el9 build changelog. - Divide By Zero error in tiffcrop in libtiff 4.4.0 allows attackers to cause a denial-of-service via a crafted tiff file. For users that...

BELL-CVE-2022-2519 CVE-2022-2519 does not affect BellSoft software

Bulletin has no description...

Huawei EulerOS: Security Advisory for libtiff (EulerOS-SA-2023-2298)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

CVE-2023-2519

creationtimestamp| type| source ---|---|--- 2023-05-04 20:32:01+00:00| seen| https://t.me/cibsecurity/63306...

CVE-2023-2519

A vulnerability has been found in Caton CTP Relay Server 1.2.9 and classified as critical. This vulnerability affects unknown code of the file /server/api/v1/login of the component API. The manipulation of the argument username/password leads to sql injection. The attack can be initiated remotely...