CVE-2026-2553

The CVE-2026-2553 affects tushar-2223 Hotel-Management-System (up to commit bb1f3b3666124b888f1e4bcf51b6fba9fbb01d15). The vulnerability resides in the HTTP POST Request Handler, specifically the /home.php file, where manipulating the Name/Email arguments results in an SQL injection. The attack i...

MiracleLinux 8 : booth-1.0-199.1.ac1d34c.git.el8.1 (AXSA:2022-3841:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3841:01 advisory. booth: authfile directive in booth config file is completely ignored. CVE-2022-2553 Tenable has extracted the preceding description block directly from the...

EUVD-2026-2553

The VSCode extension for Spring CLI are vulnerable to command injection, resulting in command execution on the users machine...

Exploit for CVE-2011-2553

...

CVE-2011-2553

creationtimestamp| type| source ---|---|--- 2025-09-29 23:48:28+00:00| seen| https://sploitus.com/exploit?id=16427382-85F1-528A-A46D-015D6D49E48B&utmsource=rss&utmmedium=rss 2025-09-30 03:00:12+00:00| published-proof-of-concept| Telegram/I7kf1TNkzGKUZqISBOJ9Tk97fqtBAGoti2dSiWprYz5U4 2025-09-30...

CVE-2022-38873

D-Link devices DAP-2310 v2.10rc036 and earlier, DAP-2330 v1.06rc020 and earlier, DAP-2360 v2.10rc050 and earlier, DAP-2553 v3.10rc031 and earlier, DAP-2660 v1.15rc093 and earlier, DAP-2690 v3.20rc106 and earlier, DAP-2695 v1.20rc119beta31 and earlier, DAP-3320 v1.05rc027 beta and earlier, DAP-366...

CVE-2025-2553

A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been rated as problematic. This issue affects some unknown processing of the file /goform/formVirtualServ. The manipulation leads to improper access controls. The attack needs to be approached within the local network. The...

CVE-2025-2553

A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been rated as problematic. This issue affects some unknown processing of the file /goform/formVirtualServ. The manipulation leads to improper access controls. The attack needs to be approached within the local network. The...

CVE-2025-2553 D-Link DIR-618/DIR-605L formVirtualServ access control

A vulnerability was found in D-Link DIR-618 and DIR-605L 2.02/3.02. It has been rated as problematic. This issue affects some unknown processing of the file /goform/formVirtualServ. The manipulation leads to improper access controls. The attack needs to be approached within the local network. The...

CVE-2024-2553

creationtimestamp| type| source ---|---|--- 2024-03-17 05:21:56+00:00| seen| https://t.me/ctinow/209765 2024-03-17 05:26:46+00:00| seen| https://t.me/ctinow/209767...

CVE-2024-2553 SourceCodester Product Review Rating System Rate Product cross site scripting

A vulnerability, which was classified as problematic, was found in SourceCodester Product Review Rating System 1.0. Affected is an unknown function of the component Rate Product Handler. The manipulation of the argument Your Name/Comment leads to cross site scripting. It is possible to launch the...

CVE-2024-2553

CVE-2024-2553 affects SourceCodester Product Review Rating System 1.0. The vulnerability involves the Rate Product Handler component, where the manipulation of the Your Name/Comment argument leads to cross-site scripting. It is possible to exploit remotely, and the exploit has been disclosed publ...

CentOS 9 : booth-1.0-251.4.bfb2f92.git.el9

The remote CentOS Linux 9 host has packages installed that are affected by a vulnerability as referenced in the booth-1.0-251.4.bfb2f92.git.el9 build changelog. - The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. As a...

CentOS 9 : booth-1.0-283.1.9d4029a.git.el9

The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the booth-1.0-283.1.9d4029a.git.el9 build changelog. - The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. As a...

CentOS 9 : booth-1.0-251.5.bfb2f92.git.el9

The remote CentOS Linux 9 host has a package installed that is affected by a vulnerability as referenced in the booth-1.0-251.5.bfb2f92.git.el9 build changelog. - The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. As a...

CVE-2022-2553 affecting package booth for versions less than 1.0-8

CVE-2022-2553 affecting package booth for versions less than 1.0-8. A patched version of the package is available...

CVE-2023-2553

creationtimestamp| type| source ---|---|--- 2023-05-06 00:25:14+00:00| seen| https://t.me/cibsecurity/63396...

CVE-2023-2553

CVE-2023-2553 is a stored XSS in unilogies/bumsys prior to version 2.2.0. The vulnerability arises when user input (e.g., customerName) is stored and later rendered without proper escaping, enabling injected scripts as shown in PoC payloads (e.g., customerName containing ). Affected product: unil...

CVE-2023-2553 Cross-site Scripting (XSS) - Stored in unilogies/bumsys

Cross-site Scripting XSS - Stored in GitHub repository unilogies/bumsys prior to 2.2.0...

Medium: booth

Issue Overview: The authfile directive in the booth config file is ignored, preventing use of authentication in communications from node to node. As a result, nodes that do not have the correct authentication key are not prevented from communicating with other nodes in the cluster. CVE-2022-2553...