48 matches found
CVE-2025-20799
In c2ps, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10274607; Issue ID: MSV-5049...
CVE-2025-20799
In c2ps, there is a possible memory corruption due to use after free. This could lead to local escalation of privilege if a malicious actor has already obtained the System privilege. User interaction is not needed for exploitation. Patch ID: ALPS10274607; Issue ID: MSV-5049...
CVE-2025-5049
creationtimestamp| type| source ---|---|--- 2025-05-21 22:04:11+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lppm7r5tyc2o...
CVE-2009-5049
WebApp JSP Snoop page XSS in jetty though 6.1.21...
Linux Distros Unpatched Vulnerability : CVE-2017-5049
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to...
CVE-2024-5049 Codezips E-Commerce Site editproduct.php unrestricted upload
A vulnerability, which was classified as critical, has been found in Codezips E-Commerce Site 1.0. Affected by this issue is some unknown functionality of the file admin/editproduct.php. The manipulation of the argument profilepic leads to unrestricted upload. The attack may be launched remotely...
CVE-2024-5049 Codezips E-Commerce Site editproduct.php unrestricted upload
A vulnerability, which was classified as critical, has been found in Codezips E-Commerce Site 1.0. Affected by this issue is some unknown functionality of the file admin/editproduct.php. The manipulation of the argument profilepic leads to unrestricted upload. The attack may be launched remotely...
CVE-2019-5049
creationtimestamp| type| source ---|---|--- 2024-02-01 14:46:15+00:00| seen| https://t.me/ctinow/177588...
CVE-2023-5049
CVE-2023-5049 affects the Giveaways and Contests by RafflePress plugin for WordPress. The flaw is Stored XSS via the rafflepress/rafflepress_gutenberg shortcode, caused by insufficient input sanitization and output escaping on the giframe attribute. Authenticated attackers with contributor or hig...
CVE-2023-5049 Giveaways and Contests by RafflePress <= 1.12.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode
The Giveaways and Contests by RafflePress plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the 'rafflepress' and 'rafflepressgutenberg' shortcode in versions up to, and including, 1.12.0 due to insufficient input sanitization and output escaping on 'giframe' user supplied...
Moderate: Red Hat Security Advisory: httpd:2.4 security update
An update for the httpd:2.4 module is now available for Red Hat Enterprise Linux 8.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...
RHEL 8 : httpd:2.4 (RHSA-2023:5049)
The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2023:5049 advisory. The httpd packages provide the Apache HTTP Server, a powerful, efficient, and extensible web server. Security Fixes: httpd: modproxyuwsgi HTTP respon...
CVE-2017-5049
An integer overflow in FFmpeg in Google Chrome prior to 57.0.2987.98 for Mac, Windows, and Linux and 57.0.2987.108 for Android allowed a remote attacker to perform an out of bounds memory write via a crafted video file, related to ChunkDemuxer...
CVE-2020-5049
...
CVE-2020-5049
This CVE entry is rejected and not used; it does not represent an active vulnerability.
Virtuozzo Linux Errata and Bugfix Advisory 2020:5049
Upstream security update. Follow RHBA-2020:5049 for details...
CVE-2009-5049
creationtimestamp| type| source ---|---|--- 2019-11-06 22:28:19+00:00| seen| https://t.me/cibsecurity/7938...
CVE-2009-5049
WebApp JSP Snoop page XSS in jetty though 6.1.21...
CVE-2009-5049
CVE-2009-5049 affects Jetty, specifically the WebApp JSP Snoop page in Jetty 6.1.21. The vulnerability arises from improper validation of user-supplied input in the WebApp JSP Snoop page, enabling cross-site scripting (XSS). The connected sources consistently describe a WebApp JSP Snoop page XSS ...
CVE-2009-5049
WebApp JSP Snoop page XSS in jetty though 6.1.21...