CVE-2026-5034

creationtimestamp| type| source ---|---|--- 2026-03-29 07:15:45+00:00| published-proof-of-concept| Telegram/6wmzYqTSDiVT0LqBrIEdo0ezESGBQjHEPcQokySpcejMmE 2026-03-29 08:10:43+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mi6p4ndmnf2q 2026-03-31 01:40:09+00:00| seen|...

CVE-2026-5034

A flaw has been found in code-projects Accounting System 1.0. Affected by this issue is some unknown functionality of the file /editcostumer.php of the component Parameter Handler. This manipulation of the argument cosid causes sql injection. It is possible to initiate the attack remotely. The...

WordPress WP File Download plugin < 6.2.6 - Reflected XSS vulnerability

Reflected XSS vulnerability discovered by Kevin Camus in WordPress Plugin WP File Download versions 6.2.6...

CVE-2025-5034

The wp-file-download WordPress plugin before 6.2.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...

CVE-2025-5034

creationtimestamp| type| source ---|---|--- 2025-06-21 06:42:07+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/19109...

CVE-2025-5034 WP File Download < 6.2.6 - Reflected XSS

The wp-file-download WordPress plugin before 6.2.6 does not sanitise and escape a parameter before outputting it back in the page, leading to a Reflected Cross-Site Scripting...

CVE-2025-5034

CVE-2025-5034 affects the WordPress WP File Download plugin prior to version 6.2.6. The issue is a Reflected XSS caused by a parameter that is not properly sanitised and escaped before output to the page. Impact is reflected in user input handling and page rendering. The primary mitigation is upg...

CVE-2023-5034

A vulnerability classified as problematic was found in SourceCodester My Food Recipe 1.0. This vulnerability affects unknown code of the file index.php of the component Image Upload Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...

CVE-2008-5034

master-filter in printfilters-ppd 2.13 allows local users to overwrite arbitrary files via a symlink attack on the /tmp/filter.debug temporary file. NOTE: the vendor disputes this vulnerability, stating 'this package does not have " possibility of attack with the help of symlinks"'...

Linux Distros Unpatched Vulnerability : CVE-2016-5034

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - dwarfelfaccess.c in libdwarf before 20160923 allows remote attackers to cause a denial of service out- of-bounds write via a crafted file, related to relocation...

WordPress SULly Plugin < 4.3.1 is vulnerable to Cross Site Request Forgery (CSRF)

Software SULly Type Plugin Vulnerable versions 4.3.1 Fixed in 4.3.1 OWASP Top 10 A5: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-5034 Patch priority Low CVSS severity Low 4.3 Developer Claim ownership PSID 671675d484b6 Credits Bob Matyas Required privilege...

CVE-2024-5034 SULly < 4.3.1 - Plugin Reset via CSRF

The SULly WordPress plugin before 4.3.1 does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...

RHEL 7 : libdwarf (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 7 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - libdwarf: heap-based buffer over-read in dwarfformsdata CVE-2017-9055 - The dwarfreadciefdeprefix functio...

CVE-2023-5034 SourceCodester My Food Recipe Image Upload index.php unrestricted upload

A vulnerability classified as problematic was found in SourceCodester My Food Recipe 1.0. This vulnerability affects unknown code of the file index.php of the component Image Upload Handler. The manipulation leads to unrestricted upload. The attack can be initiated remotely. The exploit has been...

CVE-2023-5034

CVE-2023-5034 affects SourceCodester My Food Recipe 1.0, with an unrestricted upload vulnerability in the Image Upload Handler (file index.php). The issue arises from the upload handling code, enabling remote attacker-controlled uploads. The vulnerability status is supported by multiple feeds (NV...

Ubuntu 18.04 LTS / 20.04 LTS : c-ares vulnerability (USN-5034-1)

The remote Ubuntu 18.04 LTS / 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5034-1 advisory. Philipp Jeitner and Haya Shulman discovered that c-ares incorrectly validated certain hostnames returned by DNS servers. A remote attacker could...

Virtuozzo Linux Errata and Bugfix Advisory 2020:5034

Upstream security update. Follow RHBA-2020:5034 for details...

Security Bulletin: Multiple Security Vulnerabilities in Apache Geronimo Affect IBM Sterling B2B Integrator

Summary Multiple Security Vulnerabilities in Apache Geronimo Affect IBM Sterling B2B Integrator Vulnerability Details CVEID: CVE-2008-0732 DESCRIPTION: Apache Geronimo could allow a local attacker to obtain sensitive information, caused by the init script following symlinks during a chown...

CVE-2017-5034

A use after free in PDFium in Google Chrome prior to 57.0.2987.98 for Linux and Windows allowed a remote attacker to perform an out of bounds memory read via a crafted PDF file...

CVE-2019-5034

An exploitable information disclosure vulnerability exists in the Weave Legacy Pairing functionality of Nest Cam IQ Indoor version 4620002. A set of specially crafted weave packets can cause an out of bounds read, resulting in information disclosure. An attacker can send packets to trigger this...