ECHO-0EB3-2628-798A

Bulletin has no description...

MINI-2628-H96V-GPF9

Bulletin has no description...

MINI-2628-6P8H-9VQ4

Bulletin has no description...

CVE-2026-2628

creationtimestamp| type| source ---|---|--- 2026-03-03 03:00:30+00:00| seen| https://infosec.exchange/users/offseq/statuses/116163007541407871 2026-03-03 03:00:31+00:00| seen| https://bsky.app/profile/offseq.bsky.social/post/3mg4rnzuy6n2u 2026-03-03 03:52:21+00:00| seen|...

CVE-2026-2628 All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login <= 2.2.5 - Authentication Bypass

The All-in-One Microsoft 365 & Entra ID / Azure AD SSO Login plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.2.5. This makes it possible for unauthenticated attackers to bypass authentication and log in as other users, including administrators...

MiracleLinux 4 : java-1.8.0-openjdk-1.8.0.51-0.b16.AXS4 (AXSA:2015-186:02)

The remote MiracleLinux 4 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-186:02 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2015-2590 RESERVED This candidate has been reserved by an organization ...

MiracleLinux 7 : java-1.8.0-openjdk-1.8.0.51-1.b16.el7 (AXSA:2015-225:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2015-225:01 advisory. The OpenJDK runtime environment. Security issues fixed with this release: CVE-2015-2590 RESERVED This candidate has been reserved by an organization ...

MiracleLinux 4 : curl-7.19.7-53.AXS4 (AXSA:2017-1587:01)

The remote MiracleLinux 4 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2017-1587:01 advisory. cURL is a tool for getting files from HTTP, FTP, FILE, LDAP, LDAPS, DICT, TELNET and TFTP servers, using any of the supported protocols. cURL is designed to...

Linux Distros Unpatched Vulnerability : CVE-2022-2628

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The DSGVO All in one for WP WordPress plugin before 4.2 does not sanitise and escape some of its settings, which could allow high privilege users such as admin ...

CVE-2025-2628

A vulnerability, which was classified as critical, was found in PHPGurukul Art Gallery Management System 1.1. Affected is an unknown function of the file /art-enquiry.php. The manipulation of the argument eid leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

CVE-2025-2628

creationtimestamp| type| source ---|---|--- 2025-03-23 01:25:30+00:00| seen| https://t.me/cvedetector/20885 2025-03-23 01:49:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lkz4tpwjdg2w...

CVE-2025-2628

A vulnerability, which was classified as critical, was found in PHPGurukul Art Gallery Management System 1.1. Affected is an unknown function of the file /art-enquiry.php. The manipulation of the argument eid leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

CVE-2025-2628

PHPGurukul Art Gallery Management System 1.1 is affected by a SQL injection in /art-enquiry.php via the eid parameter. The vulnerability arises from an unsafely constructed SQL statement, enabling remote exploitation; the public exploit is reported across multiple sources. Affected component: unk...

CVE-2025-2628 PHPGurukul Art Gallery Management System art-enquiry.php sql injection

A vulnerability, which was classified as critical, was found in PHPGurukul Art Gallery Management System 1.1. Affected is an unknown function of the file /art-enquiry.php. The manipulation of the argument eid leads to sql injection. It is possible to launch the attack remotely. The exploit has be...

Linux Distros Unpatched Vulnerability : CVE-2024-2628

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Inappropriate implementation in Downloads in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to perform UI spoofing via a crafted URL. Chromium...

Huawei EulerOS: Security Advisory for curl (EulerOS-SA-2024-2628)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

SUSE SLED15 / SLES15 / openSUSE 15 Security Update : java-17-openjdk (SUSE-SU-2024:2628-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:2628-1 advisory. Updated to version 17.0.12+7 July 2024 CPU: - CVE-2024-21131: Fixed a potential UTF8 size overfl...

RHEL 7 : redis (RHSA-2019:2628)

The remote Redhat Enterprise Linux 7 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2019:2628 advisory. Redis is an advanced key-value store. It is often referred to as a data-structure server since keys can contain strings, hashes, lists, sets, and...

Debian: Security Advisory (DSA-5648-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Debian dsa-5648 : chromium - security update

The remote Debian 12 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-5648 advisory. - Object lifecycle issue in V8 in Google Chrome prior to 123.0.6312.58 allowed a remote attacker to potentially exploit object corruption via a crafted HTML page...