CVE-2026-5002

creationtimestamp| type| source ---|---|--- 2026-03-28 18:33:11+00:00| seen| https://bsky.app/profile/postac001.bsky.social/post/3mi5bgsq2xo22 2026-03-28 19:15:23+00:00| published-proof-of-concept| Telegram/8U-H3VMc1maD1lckCxRI7CstcqAwsgY26eZtrae-M6VyZE...

EUVD-2004-2687

Malware in sbrugna...

EUVD-2016-9216

Malware in sbrugna...

EUVD-2004-0352

Malware in sbrugna...

CVE-2020-5002

IBM Financial Transaction Manager 3.2.0 through 3.2.10 could allow an authenticated user to perform unauthorized actions due to improper validation. IBM X-Force ID: 192954...

CVE-2025-5002

creationtimestamp| type| source ---|---|--- 2025-05-20 22:40:41+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17094 2025-05-20 23:13:37+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lpn7mr4g5x2w...

CVE-2025-5002

A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /userproposalupdateorder.php. The manipulation of the argument orderid leads to sql injection. It is possible to initiate the attack...

CVE-2025-5002 SourceCodester Client Database Management System user_proposal_update_order.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /userproposalupdateorder.php. The manipulation of the argument orderid leads to sql injection. It is possible to initiate the attack...

CVE-2025-5002 SourceCodester Client Database Management System user_proposal_update_order.php sql injection

A vulnerability, which was classified as critical, was found in SourceCodester Client Database Management System 1.0. This affects an unknown part of the file /userproposalupdateorder.php. The manipulation of the argument orderid leads to sql injection. It is possible to initiate the attack...

CVE-2020-5002

creationtimestamp| type| source ---|---|--- 2025-03-06 19:38:21+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/6735...

Linux Distros Unpatched Vulnerability : CVE-2016-5002

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - XML external entity XXE vulnerability in the Apache XML-RPC aka ws-xmlrpc library 3.1.3, as used in Apache Archiva, allows remote attackers to conduct server-si...

RICOH DL Improper Restriction of Operations within the Bounds of a Memory Buffer (CVE-2012-5002)

Stack-based buffer overflow in SR10 FTP server SR10.exe 1.1.0.6 in Ricoh DC Software DL-10 4.5.0.1, when the Log file name option is enabled, allows remote attackers to execute arbitrary code via a long USER FTP command. This plugin only works with Tenable.ot. Please visit...

RHEL 8 : python3.11-setuptools (RHSA-2024:5002)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2024:5002 advisory. Setuptools is a collection of enhancements to the Python 3 distutils that allow you to more easily build and distribute Python 3 packages, especially...

CVE-2024-5002

The User Submitted Posts WordPress plugin before 20240516 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-5002

The User Submitted Posts WordPress plugin before 20240516 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-5002 User Submitted Posts < 20240516 - Admin+ Stored XSS

The User Submitted Posts WordPress plugin before 20240516 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

CVE-2024-5002 User Submitted Posts < 20240516 - Admin+ Stored XSS

The User Submitted Posts WordPress plugin before 20240516 does not sanitise and escape some of its settings, which could allow high privilege users such as admin to perform Stored Cross-Site Scripting attacks even when the unfilteredhtml capability is disallowed for example in multisite setup...

RHEL 5 : xmlrpc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 5 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - xmlrpc: XML external entity vulnerability SSRF via a crafted DTD CVE-2016-5002 - xmlrpc: Deserialization ...

RHEL 6 : xmlrpc (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - xmlrpc: XML external entity vulnerability SSRF via a crafted DTD CVE-2016-5002 - The Content-Encoding HTT...

Malicious code in wlwz-2312-5002 (npm)

--- -= Per source details. Do not edit below this line.=- Source: ghsa-malware c9f2864dfcc1013f030565e450323b1d25d6b469ee9728fcfbdd84084f0e9e78 Any computer that has this package installed or running should be considered fully compromised. All secrets and keys stored on that computer should be...