RHCOS 4 : OpenShift Container Platform 4.4.z jenkins-2-plugins (RHSA-2020:2737)

The remote Red Hat Enterprise Linux CoreOS 4 host has a package installed that is affected by multiple vulnerabilities as referenced in the RHSA-2020:2737 advisory. - jenkins-script-security-plugin: sandbox protection bypass leads to execute arbitrary code in sandboxed scripts CVE-2019-16538 -...

CVE-2026-2737

creationtimestamp| type| source ---|---|--- 2026-04-02 15:21:32+00:00| seen| Telegram/2ZRPJX-1sLKzKjRuu5udQKo36EYUbcyEMGSCPR0-mfcyWco...

MiracleLinux 7 : mariadb-5.5.65-1.0.1.el7.AXS7 (AXSA:2020-4710:01)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2020-4710:01 advisory. MariaDB is a multi-user, multi-threaded SQL database server that is binary compatible with MySQL. The following packages have been upgraded to a lat...

CGA-X3P3-2737-9XFV

Bulletin has no description...

Security update for libsoup

This update for libsoup fixes the following issues: CVE-2025-4945: Add value checks for date/time parsing bsc1243314. Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch". Alternatively you can run the command liste...

CVE-2023-2737

Improper log permissions in SafeNet Authentication Service Version 3.4.0 on Windows allows an authenticated attacker to cause a denial of service via local privilege escalation...

CVE-2022-2737

The WP STAGING WordPress plugin before 2.9.18 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2025-2737

creationtimestamp| type| source ---|---|--- 2025-03-25 07:00:53+00:00| published-proof-of-concept| Telegram/iQNXtFYOmWcRpTuzCMi1YOkdI6G4t6sPIp-48nspyrGoFkg 2025-03-25 08:49:31+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3ll6va3j5jo2w 2025-03-25 09:27:35+00:00| seen|...

CVE-2025-2737

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/contactus.php. The manipulation of the argument pagetitle leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-2737

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/contactus.php. The manipulation of the argument pagetitle leads to sql injection. It is possible to initiate the attack remotely. The...

CVE-2025-2737

CVE-2025-2737 affects PHPGurukul Old Age Home Management System 1.0. The vulnerability is an SQL injection in the /admin/contactus.php page achieved by manipulating the pagetitle parameter. It is described as remote-exploitable and the exploit has been publicly disclosed. No remediation or affect...

CVE-2025-2737 PHPGurukul Old Age Home Management System contactus.php sql injection

A vulnerability was found in PHPGurukul Old Age Home Management System 1.0. It has been classified as critical. This affects an unknown part of the file /admin/contactus.php. The manipulation of the argument pagetitle leads to sql injection. It is possible to initiate the attack remotely. The...

RHEL 9 : Red Hat OpenStack Platform 17.1 (python-openstackclient) (RHSA-2024:2737)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:2737 advisory. python-openstackclient is a unified command-line client for the OpenStack APIs. It is a thin wrapper to the stock python-client modules that implemen...

CVE-2019-2737

creationtimestamp| type| source ---|---|--- 2023-11-15 16:53:22+00:00| published-proof-of-concept| https://t.me/BABATATASASA/5990...

Oracle Linux 7 : mariadb (ELSA-2020-1100)

The remote Oracle Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2020-1100 advisory. - Rebase to 5.5.65 Also fixes: CVE-2019-2737 CVE-2019-2739 CVE-2019-2740 CVE-2019-2805 Resolves: 1741357 Tenable has extracted the preceding descriptio...

CVE-2023-2737

CVE-2023-2737 involves Thales SafeNet Authentication Service 3.4.0 on Windows with an improper log permissions flaw due to misconfigured logging privileges. An authenticated attacker can trigger a Denial of Service via local privilege escalation. The available connected sources confirm the vulner...

CVE-2023-2737 Improper securing of log directory may allow a denial of service

Improper log permissions in SafeNet Authentication Service Version 3.4.0 on Windows allows an authenticated attacker to cause a denial of service via local privilege escalation...

CVE-2023-2737 Improper securing of log directory may allow a denial of service

Improper log permissions in SafeNet Authentication Service Version 3.4.0 on Windows allows an authenticated attacker to cause a denial of service via local privilege escalation...

K51272092: MySQL vulnerabilities CVE-2019-2730, CVE-2019-2731, CVE-2019-2737, CVE-2019-2738, and CVE-2019-2739

Security Advisory Description CVE-2019-2730 Vulnerability in the MySQL Server component of Oracle MySQL subcomponent: Server: Security: Privileges. Supported versions that are affected are 5.6.44 and prior and 5.7.18 and prior. Easily exploitable vulnerability allows high privileged attacker with...

SUSE CVE-2015-2737

The rx::d3d11::SetBufferData function in the Direct3D 11 implementation in Mozilla Firefox before 39.0, Firefox ESR 31.x before 31.8 and 38.x before 38.1, and Thunderbird before 38.1 reads data from uninitialized memory locations, which has unspecified impact and attack vectors...