50 matches found
Linux Distros Unpatched Vulnerability : CVE-2026-5078
The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Impact: The morgan logging middleware's :remote-user token extracts the Basic auth username from the Authorization request header and writes it to the log strea...
CVE-2026-5078
creationtimestamp| type| source ---|---|--- 2026-06-02 19:47:16+00:00| seen| https://bsky.app/profile/ulisesgascon.com/post/3mndedxkb3s2m 2026-06-03 10:39:34+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mnew7lag7b2u 2026-07-10 15:11:59+00:00| seen|...
CVE-2025-5078
creationtimestamp| type| source ---|---|--- 2025-05-22 14:44:24+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/17296 2025-05-22 16:07:52+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lprirjnajb2q...
CVE-2025-5078 PHPGurukul/Campcodes Online Shopping Portal subcategory.php sql injection
A vulnerability was detected in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /admin/subcategory.php. Performing manipulation of the argument Category results in sql injection. The attack is possible to be carried out remotely. The exploit is now...
CVE-2025-5078 PHPGurukul/Campcodes Online Shopping Portal subcategory.php sql injection
A vulnerability was detected in PHPGurukul/Campcodes Online Shopping Portal 1.0. Affected is an unknown function of the file /admin/subcategory.php. Performing manipulation of the argument Category results in sql injection. The attack is possible to be carried out remotely. The exploit is now...
CVE-2019-5078
An exploitable denial of service vulnerability exists in the iocheckd service "I/O-Check" functionality of WAGO PFC200 Firmware versions 03.01.0713 and 03.00.3912, and WAGO PFC100 Firmware version 03.00.3912. A specially crafted set of packets can cause a denial of service, resulting in the devic...
CVE-2018-5078
Online Ticket Booking has XSS via the admin/eventlist.php cast parameter...
CVE-2019-5078
creationtimestamp| type| source ---|---|--- 2024-03-15 19:26:16+00:00| seen| https://t.me/ctinow/209058...
CVE-2023-5078
CVE-2023-5078 concerns Lenovo ThinkPad BIOS where a physical or local attacker with elevated privileges could tamper with BIOS firmware. Affected component: ThinkPad BIOS firmware. Root cause and exact impact are described as limited to tampering with BIOS firmware, with high confidentiality/inte...
Debian: Security Advisory (DSA-5078-1)
The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-5078-3)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu: Security Advisory (USN-5078-1)
The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Ubuntu 16.04 ESM : Squashfs-Tools vulnerabilities (USN-5078-2)
The remote Ubuntu 16.04 ESM host has a package installed that is affected by multiple vulnerabilities as referenced in the USN-5078-2 advisory. USN-5078-1 fixed several vulnerabilities in Squashfs-Tools. This update provides the corresponding update for Ubuntu 16.04 ESM. Tenable has extracted the...
CVE-2020-5078
This CVE entry is rejected and does not represent an active vulnerability entry.
CVE-2019-5078
CVE-2019-5078 affects WAGO PFC200/PFC100 controllers and their iocheckd 'I/O-Check' service. A specially crafted, unauthenticated packet sequence can trigger a denial-of-service, causing the device to enter an error state and cease all network communications. Talos advisories and Red Hat/CISA ref...
CVE-2018-5078
The CVE-2018-5078 entry concerns a Cross-Site Scripting (XSS) vulnerability in the Online Ticket Booking system, exploitable via the admin/eventlist.php cast parameter. Connected sources consistently describe XSS as the flaw and point to the same parameter as the vector, but there are no accompan...
CVE-2017-16573
This vulnerability allows remote attackers to disclose sensitive information on vulnerable installations of Foxit Reader 8.3.1.21155. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within...
CVE-2017-5078
Insufficient validation of untrusted input in Blink's mailto: handling in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac allowed a remote attacker to perform command injection via a crafted HTML page, a similar issue to CVE-2004-0121. For example, characters such as have an...
CVE-2017-5078
Insufficient validation of untrusted input in Blink's mailto: handling in Google Chrome prior to 59.0.3071.86 for Linux, Windows, and Mac allowed a remote attacker to perform command injection via a crafted HTML page, a similar issue to CVE-2004-0121. For example, characters such as have an...
CVE-2017-5078
CVE-2017-5078 is listed in Arch Linux ASA-201707-4 as a vulnerability in qt5-webengine (Chromium-based) before 5.9.1-1, described as an arbitrary command execution via a possible command injection in the mailto handling component of the Chromium browser. The advisory indicates multiple issues in ...