23 matches found
Exploit for CVE-2025-40552
CVE-2025-40552 and CVE-2025-40553 SolarWinds Web Help Desk Pre...
SolarWinds Web Help Desk < 2026.1 Multiple Vulnerabilities
The version of Solarwinds Web Help Desk installed on the remote host is prior to 2026.1. It is, therefore, affected by multiple vulnerabilities. - SolarWinds Web Help Desk was found to be susceptible to an untrusted data deserialization vulnerability that could lead to remote code execution, whic...
Multiple Critical SolarWinds Web Help Desk Vulnerabilities: CVE-2025-40551, CVE-2025-40552, CVE-2025-40553, CVE-2025-40554
Overview On January 28, 2026, SolarWinds published an advisory for multiple new vulnerabilities affecting their Web Help Desk product. Web Help Desk is an IT help desk ticketing and asset management software solution. Of the six new CVEs disclosed in the advisory, four are critical, and allow a...
CVE-2025-40553
creationtimestamp| type| source ---|---|--- 2026-01-28 10:09:07+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mdhzr4zsua2r 2026-01-28 10:15:24+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdi24e3bsr2x 2026-01-28 13:21:55+00:00| seen|...
MAL-2025-40553 Malicious code in ymail-editor (npm)
The package ymail-editor was found to contain malicious code...
CVE-2024-40553
Tmalldemo v2024.07.03 was discovered to contain an arbitrary file upload via the component uploadUserHeadImage...
CVE-2021-40553
piwigo 11.5.0 is affected by a remote code execution RCE vulnerability in the LocalFiles Editor...
CVE-2024-40553
creationtimestamp| type| source ---|---|--- 2024-07-15 19:21:26+00:00| seen| https://t.me/cvedetector/879...
CVE-2024-40553
Tmalldemo v2024.07.03 was discovered to contain an arbitrary file upload via the component uploadUserHeadImage...
CVE-2024-40553
Tmalldemo v2024.07.03 was discovered to contain an arbitrary file upload via the component uploadUserHeadImage...
CVE-2024-40553
CVE-2024-40553 affects Tmall_demo v2024.07.03, where an arbitrary file upload is possible through the uploadUserHeadImage component. The incident is documented across Red Hat/NVD/CVE listings and third-party feeds. According to the initial metrics, the CVSS 3.1 vector indicates Network access, lo...
CVE-2023-40553
creationtimestamp| type| source ---|---|--- 2023-09-06 12:17:48+00:00| seen| https://t.me/cibsecurity/69964...
CVE-2023-40553
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Plausible.Io Plausible Analytics plugin = 1.3.3 versions...
CVE-2023-40553 WordPress Plausible Analytics Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Plausible.Io Plausible Analytics plugin = 1.3.3 versions...
CVE-2023-40553
CVE-2023-40553 affects Plausible Analytics WordPress plugin, buggy in <= 1.3.3. Unauth. Reflected XSS via page-url was reported; patch 1.3.4 fixes the flaw. Impact is reflected XSS leading to potential user impersonation or session manipulation in exposed contexts. Product: Plausible Analytics...
CVE-2023-40553 WordPress Plausible Analytics Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)
Unauth. Reflected Cross-Site Scripting XSS vulnerability in Plausible.Io Plausible Analytics plugin = 1.3.3 versions...
WordPress Plausible Analytics Plugin <= 1.3.3 is vulnerable to Cross Site Scripting (XSS)
Software Plausible Analytics Type Plugin Vulnerable versions = 1.3.3 Fixed in 1.3.4 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-40553 Patch priority Medium CVSS severity Medium 5.8 Developer Claim ownership PSID 43b128dd161b Credits Le Ngoc Anh Required privile...
CVE-2022-40553
Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2022. Notes: none...
Piwigo <= 11.5.0 RCE Vulnerability
Piwigo is prone to a remote code execution RCE vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:piwigo:piwigo"; if...
CVE-2021-40553
creationtimestamp| type| source ---|---|--- 2022-06-28 20:36:09+00:00| seen| https://t.me/cibsecurity/45311...