100 matches found
CVE-2026-5071
creationtimestamp| type| source ---|---|--- 2026-05-30 08:53:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mn2ogvellr2n...
CVE-2025-5071
The AI Engine plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'MeowMWAILabsMCP::canaccessmcp' function in versions 2.8.0 to 2.8.3. This makes it possible for authenticated attackers, with subscriber-level access and...
CVE-2025-5071 AI Engine 2.8.0 - 2.8.3 - Authenticated (Subscriber+) Insufficient Authorization to Privilege Escalation via MCP
The AI Engine plugin for WordPress is vulnerable to unauthorized modification of data and loss of data due to a missing capability check on the 'MeowMWAILabsMCP::canaccessmcp' function in versions 2.8.0 to 2.8.3. This makes it possible for authenticated attackers, with subscriber-level access and...
WordPress AI Engine 2.8.3 - Authenticated (Subscriber+) Insufficient Authorization to Privilege Escalation via MCP vulnerability
Authenticated Subscriber+ Insufficient Authorization to Privilege Escalation via MCP vulnerability discovered by István Márton - Wordfence in WordPress Plugin AI Engine versions = 2.8.3...
CVE-2025-5071
creationtimestamp| type| source ---|---|--- 2025-06-19 05:09:56+00:00| seen| https://bsky.app/profile/infosec.skyfleet.blue/post/3lrwr2u6unv2o 2025-06-19 09:43:36+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/18844 2025-06-19 10:00:28+00:00| seen|...
Linux Distros Unpatched Vulnerability : CVE-2012-5071
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Unspecified vulnerability in the Java Runtime Environment JRE component in Oracle Java SE 7 Update 7 and earlier, 6 Update 35 and earlier, and 5.0 Update 36 and...
CVE-2024-5071
The Bookster WordPress plugin through 1.1.0 allows adding sensitive parameters when validating appointments allowing attackers to manipulate the data sent when booking an appointment the request body to change its status from pending to approved...
CVE-2024-5071 Bookster <= 1.1.0 - Unauthenticated Appointment Status Update
The Bookster WordPress plugin through 1.1.0 allows adding sensitive parameters when validating appointments allowing attackers to manipulate the data sent when booking an appointment the request body to change its status from pending to approved...
CVE-2024-5071 Bookster <= 1.1.0 - Unauthenticated Appointment Status Update
The Bookster WordPress plugin through 1.1.0 allows adding sensitive parameters when validating appointments allowing attackers to manipulate the data sent when booking an appointment the request body to change its status from pending to approved...
WordPress Bookster Plugin < 1.2.0 is vulnerable to Broken Access Control
Software Bookster Type Plugin Vulnerable versions 1.2.0 Fixed in 1.2.0 OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-5071 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 83ef822591e4 Credits Roshan Cheriyan Required privilege...
CVE-2019-5071
creationtimestamp| type| source ---|---|--- 2024-02-26 11:41:04+00:00| seen| https://t.me/ctinow/193264...
CVE-2016-5071
creationtimestamp| type| source ---|---|--- 2023-12-11 11:58:49+00:00| seen| https://t.me/arpsyndicate/1726...
CVE-2023-5071
The CVE-2023-5071 entry concerns the Sitekit plugin for WordPress, where Stored XSS is possible via the sitekit_iframe shortcode in versions up to and including 1.4. The vulnerability arises from insufficient input sanitization and output escaping, enabling authenticated attackers with contributo...
AlmaLinux 9 : libcap (ALSA-2023:5071)
The remote AlmaLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALSA-2023:5071 advisory. - A vulnerability was found in the pthreadcreate function in libcap. This issue may allow a malicious actor to use cause realpthreadcreate to return an...
Oracle Linux 9 : libcap (ELSA-2023-5071)
The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2023-5071 advisory. - Fix integer overflow in libcapstrdup CVE-2023-2603 Resolves: rhbz2210638 Tenable has extracted the preceding description block directly from the Orac...
RHEL 8 : Red Hat OpenStack Platform 16.1 (python-eventlet) (RHSA-2021:5071)
The remote Redhat Enterprise Linux 8 host has a package installed that is affected by a vulnerability as referenced in the RHSA-2021:5071 advisory. Eventlet is a networking library written in Python. It achieves high scalability by using non-blocking io while at the same time retaining high...
Ubuntu: Security Advisory (USN-5071-3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel (Raspberry Pi) vulnerabilities (USN-5071-3)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5071-3 advisory. It was discovered that the KVM hypervisor implementation in the Linux kernel did not properly perform reference counting in some situations,...
Ubuntu 18.04 LTS : Linux kernel (HWE) vulnerabilities (USN-5071-2)
The remote Ubuntu 18.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5071-2 advisory. USN-5071-1 fixed vulnerabilities in the Linux kernel for Ubuntu 20.04 LTS. This update provides the corresponding updates for the Linux Hardware Enableme...
Ubuntu 18.04 LTS / 20.04 LTS : Linux kernel vulnerabilities (USN-5071-1)
The remote Ubuntu 18.04 LTS / 20.04 LTS host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5071-1 advisory. Maxim Levitsky and Paolo Bonzini discovered that the KVM hypervisor implementation for AMD processors in the Linux kernel allowed a guest VM ...