MINI-2736-5V6G-6C9X

Bulletin has no description...

MINI-9Q29-2736-7QP5

Bulletin has no description...

CVE-2026-2736

Reflected Cross-site Scripting XSS in Alkacon's OpenCms v18.0, which allows an attacker to execute JavaScript code in the victim's browser by sending the victim a malicious URL containing the ‘q’ parameter in ‘/search/index.html’. This vulnerability can be exploited to steal sensitive user...

CVE-2025-2736

creationtimestamp| type| source ---|---|--- 2025-03-25 05:23:32+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/8592 2025-03-25 06:56:54+00:00| seen| https://t.me/cvedetector/21035 2025-03-25 07:00:53+00:00| published-proof-of-concept|...

CVE-2025-2736

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/bwdates-report-details.php. The manipulation of the argument fromdate leads to sql injection. The attack may be launched...

CVE-2025-2736 PHPGurukul Old Age Home Management System bwdates-report-details.php sql injection

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/bwdates-report-details.php. The manipulation of the argument fromdate leads to sql injection. The attack may be launched...

CVE-2025-2736 PHPGurukul Old Age Home Management System bwdates-report-details.php sql injection

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0 and classified as critical. Affected by this issue is some unknown functionality of the file /admin/bwdates-report-details.php. The manipulation of the argument fromdate leads to sql injection. The attack may be launched...

CVE-2025-2736

The CVE-2025-2736 entry affects PHPGurukul Old Age Home Management System version 1.0, specifically the /admin/bwdates-report-details.php endpoint. The root cause is improper handling of the fromdate parameter, enabling SQL injection that can be executed remotely. Public disclosure of the exploit...

Linux Distros Unpatched Vulnerability : CVE-2012-2736

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In NetworkManager 0.9.2.0, when a new wireless network was created with WPA/WPA2 security in AdHoc mode, it created an open/insecure network. CVE-2012-2736 Note...

Advisory ROSA-SA-2025-2736

Software: ghostscript 9.27 OS: ROSA Virtualization 3.0 packageevrstring: ghostscript-9.27-13.0.1.rv30 CVE-ID: CVE-2024-33871 BDU-ID: 2024-05064 CVE-Crit: CRITICAL. CVE-DESC.: A vulnerability exists in the contrib/opvp/gdevopvp.c component of the Ghostscript processing, conversion, and document...

CVE-2013-2736

creationtimestamp| type| source ---|---|--- 2025-02-14 21:08:31+00:00| seen| Telegram/1NSIX1wu2gyUOfYjusC-VT-KGW0oSSja3s2e2DaPm70aZ1Y9...

Amazon Linux 2 : iperf3 (ALAS-2025-2736)

The version of iperf3 installed on the remote host is prior to 3.1.7-2. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2025-2736 advisory. iperf v3.17.1 was discovered to contain a segmentation violation via the iperfexchangeparameters function. CVE-2024-53580 Tenable ha...

RHEL 6 : networkmanager (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - NetworkManager: creating new WPA-secured wireless network results in insecure network being created inste...

RHEL 5 : networkmanager (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by a vulnerability that has been acknowledged by the vendor but will not be patched. - NetworkManager: creating new WPA-secured wireless network results in insecure network being created instead...

WordPress Bold Page Builder Plugin <= 4.8.8 is vulnerable to Cross Site Scripting (XSS)

Software Bold Page Builder Type Plugin Vulnerable versions = 4.8.8 Fixed in 4.8.9 OWASP Top 10 A7: Cross-Site Scripting XSS Classification Cross Site Scripting XSS CVE CVE-2024-2736 Patch priority Low CVSS severity Low 6.4 Developer Claim ownership PSID 4c37938b1642 Credits João Pedro Soares de...

CVE-2024-2736

The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via HTML Tags in all versions up to, and including, 4.8.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with...

CVE-2024-2736

The Bold Page Builder plugin for WordPress is vulnerable to Stored Cross-Site Scripting via HTML Tags in all versions up to, and including, 4.8.8 due to insufficient input sanitization and output escaping on user supplied attributes. This makes it possible for authenticated attackers, with...

CVE-2024-2736

The Bold Page Builder plugin for WordPress is affected by CVE-2024-2736: Stored Cross-Site Scripting via HTML Tags in all versions up to 4.8.8 due to insufficient input sanitization and output escaping on user-supplied attributes. The vulnerability requires authentication at the Contributor level...

WordPress Groundhogg Plugin <= 2.7.9.8 is vulnerable to Cross Site Request Forgery (CSRF)

Software Groundhogg Type Plugin Vulnerable versions = 2.7.9.8 Fixed in 2.7.10 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2023-2736 Patch priority Low CVSS severity Low 7.5 Developer Claim ownership PSID 8080227ecd75 Credits Lana Codes Required...

CVE-2023-2736

creationtimestamp| type| source ---|---|--- 2023-05-20 07:23:38+00:00| seen| https://t.me/cibsecurity/64479...